Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/modsecurity@3.0.3-1%2Bdeb10u2
purl pkg:deb/debian/modsecurity@3.0.3-1%2Bdeb10u2
Next non-vulnerable version 3.0.14-1
Latest non-vulnerable version 3.0.14-1
Risk
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-cq83-mkc9-g3e2
Aliases:
CVE-2019-19886
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeader in transaction.cc.
3.0.4-2
Affected by 4 other vulnerabilities.
VCID-gr7r-94ky-x3ck
Aliases:
CVE-2020-15598
security update
3.0.4-2
Affected by 4 other vulnerabilities.
VCID-m634-5nyb-skeu
Aliases:
CVE-2019-25043
ModSecurity 3.x before 3.0.4 mishandles key-value pair parsing, as demonstrated by a "string index out of range" error and worker-process crash for a "Cookie: =abc" header.
3.0.4-2
Affected by 4 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T21:59:59.329201+00:00 Debian Oval Importer Affected by VCID-gr7r-94ky-x3ck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:34:34.325602+00:00 Debian Oval Importer Affected by VCID-cq83-mkc9-g3e2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:35:44.881483+00:00 Debian Oval Importer Affected by VCID-m634-5nyb-skeu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T21:38:13.101147+00:00 Debian Oval Importer Affected by VCID-gr7r-94ky-x3ck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:15:49.900544+00:00 Debian Oval Importer Affected by VCID-cq83-mkc9-g3e2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:23:41.005848+00:00 Debian Oval Importer Affected by VCID-m634-5nyb-skeu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T21:16:15.640199+00:00 Debian Oval Importer Affected by VCID-gr7r-94ky-x3ck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:56:50.891563+00:00 Debian Oval Importer Affected by VCID-cq83-mkc9-g3e2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:18:14.406745+00:00 Debian Oval Importer Affected by VCID-m634-5nyb-skeu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0