Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie

Type deb

Namespace debian

Name modsecurity-apache

Version 2.9.13-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-6me3-gumq-ffc1

vulnerability_id VCID-6me3-gumq-ffc1

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52891.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52891.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-52891

reference_id

reference_type

scores

value	0.00235
scoring_system	epss
scoring_elements	0.46561
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-52891

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108715
reference_id	1108715
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108715

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2375926
reference_id	2375926
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2375926

reference_url

https://github.com/owasp-modsecurity/ModSecurity/commit/ecd7b9736836eee391d25f35d5bd06a3ce35a45d

reference_id

ecd7b9736836eee391d25f35d5bd06a3ce35a45d

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:24:24Z/

url

https://github.com/owasp-modsecurity/ModSecurity/commit/ecd7b9736836eee391d25f35d5bd06a3ce35a45d

reference_url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-gw9c-4wfm-vj3x

reference_id

GHSA-gw9c-4wfm-vj3x

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:24:24Z/

url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-gw9c-4wfm-vj3x

fixed_packages

url	pkg:deb/debian/modsecurity-apache@0?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@0%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2025-52891

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6me3-gumq-ffc1

url VCID-7x64-n3c8-6kgu

vulnerability_id VCID-7x64-n3c8-6kgu

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54571.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-54571.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-54571

reference_id

reference_type

scores

value	0.00305
scoring_system	epss
scoring_elements	0.54132
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-54571

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54571
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54571

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110480
reference_id	1110480
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110480

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2386666
reference_id	2386666
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2386666

reference_url

https://github.com/owasp-modsecurity/ModSecurity/issues/2514

reference_id

2514

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-08-06T20:31:25Z/

url

https://github.com/owasp-modsecurity/ModSecurity/issues/2514

reference_url

https://github.com/owasp-modsecurity/ModSecurity/commit/6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8

reference_id

6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-08-06T20:31:25Z/

url

https://github.com/owasp-modsecurity/ModSecurity/commit/6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8

reference_url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v

reference_id

GHSA-cg44-9m43-3f9v

reference_type

scores

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-08-06T20:31:25Z/

url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u5?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.12-2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.12-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.12-2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2025-54571

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7x64-n3c8-6kgu

url VCID-b2pw-zgc5-3fd8

vulnerability_id VCID-b2pw-zgc5-3fd8

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-47947.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-47947.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-47947

reference_id

reference_type

scores

value	0.00615
scoring_system	epss
scoring_elements	0.70388
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-47947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47947
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47947

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106286
reference_id	1106286
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106286

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2367903
reference_id	2367903
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2367903

reference_url

https://github.com/owasp-modsecurity/ModSecurity/pull/3389

reference_id

3389

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T15:51:29Z/

url

https://github.com/owasp-modsecurity/ModSecurity/pull/3389

reference_url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-859r-vvv8-rm8r

reference_id

GHSA-859r-vvv8-rm8r

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T15:51:29Z/

url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-859r-vvv8-rm8r

reference_url	https://access.redhat.com/errata/RHSA-2025:13680
reference_id	RHSA-2025:13680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13680

reference_url	https://access.redhat.com/errata/RHSA-2025:13681
reference_id	RHSA-2025:13681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13681

reference_url	https://access.redhat.com/errata/RHSA-2025:8605
reference_id	RHSA-2025:8605
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8605

reference_url	https://access.redhat.com/errata/RHSA-2025:8626
reference_id	RHSA-2025:8626
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8626

reference_url	https://access.redhat.com/errata/RHSA-2025:8627
reference_id	RHSA-2025:8627
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8627

reference_url	https://access.redhat.com/errata/RHSA-2025:8674
reference_id	RHSA-2025:8674
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8674

reference_url	https://access.redhat.com/errata/RHSA-2025:8837
reference_id	RHSA-2025:8837
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8837

reference_url	https://access.redhat.com/errata/RHSA-2025:8844
reference_id	RHSA-2025:8844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8844

reference_url	https://access.redhat.com/errata/RHSA-2025:8917
reference_id	RHSA-2025:8917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8917

reference_url	https://access.redhat.com/errata/RHSA-2025:8922
reference_id	RHSA-2025:8922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8922

reference_url	https://access.redhat.com/errata/RHSA-2025:8937
reference_id	RHSA-2025:8937
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8937

reference_url	https://usn.ubuntu.com/7567-1/
reference_id	USN-7567-1
reference_type
scores
url	https://usn.ubuntu.com/7567-1/

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u3%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.9-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.9-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2025-47947

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b2pw-zgc5-3fd8

url VCID-jvsn-jxa2-w3ey

vulnerability_id VCID-jvsn-jxa2-w3ey

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5705.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5705.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-5705

reference_id

reference_type

scores

value	0.00842
scoring_system	epss
scoring_elements	0.75185
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-5705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5705

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1082904
reference_id	1082904
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1082904

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.7.7-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.7.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.7.7-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2013-5705

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jvsn-jxa2-w3ey

url VCID-k8b3-b3st-pbgv

vulnerability_id VCID-k8b3-b3st-pbgv

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24021.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24021.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24021

reference_id

reference_type

scores

value	0.00141
scoring_system	epss
scoring_elements	0.34009
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24021

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24021
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24021

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029329
reference_id	1029329
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029329

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2163615
reference_id	2163615
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2163615

reference_url

https://github.com/SpiderLabs/ModSecurity/pull/2857

reference_id

2857

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://github.com/SpiderLabs/ModSecurity/pull/2857

reference_url

https://github.com/SpiderLabs/ModSecurity/pull/2857/commits/4324f0ac59f8225aa44bc5034df60dbeccd1d334

reference_id

4324f0ac59f8225aa44bc5034df60dbeccd1d334

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://github.com/SpiderLabs/ModSecurity/pull/2857/commits/4324f0ac59f8225aa44bc5034df60dbeccd1d334

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ/

reference_id

52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ/

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00023.html

reference_id

msg00023.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00023.html

reference_url	https://access.redhat.com/errata/RHSA-2023:4628
reference_id	RHSA-2023:4628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4628

reference_url	https://access.redhat.com/errata/RHSA-2023:4629
reference_id	RHSA-2023:4629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4629

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI/

reference_id

SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI/

reference_url	https://usn.ubuntu.com/6370-1/
reference_id	USN-6370-1
reference_type
scores
url	https://usn.ubuntu.com/6370-1/

reference_url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.7

reference_id

v2.9.7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.7

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL/

reference_id

WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-02T16:17:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL/

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2023-24021

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k8b3-b3st-pbgv

url VCID-m2p7-gbvq-zqge

vulnerability_id VCID-m2p7-gbvq-zqge

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-42717

reference_id

reference_type

scores

value	0.0204
scoring_system	epss
scoring_elements	0.84203
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-42717

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42717

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://usn.ubuntu.com/6370-1/
reference_id	USN-6370-1
reference_type
scores
url	https://usn.ubuntu.com/6370-1/

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.5-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.5-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2021-42717

risk_score 1.9

exploitability 0.5

weighted_severity 3.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m2p7-gbvq-zqge

url VCID-npqz-yvcw-2qbt

vulnerability_id VCID-npqz-yvcw-2qbt

summary ModSecurity before 2.7.3 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML external entity declaration in conjunction with an entity reference, aka an XML External Entity (XXE) vulnerability.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1915

reference_id

reference_type

scores

value	0.04848
scoring_system	epss
scoring_elements	0.89775
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1915

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1915
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1915

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704625
reference_id	704625
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704625

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.6.6-6?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.6.6-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.6.6-6%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2013-1915

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-npqz-yvcw-2qbt

url VCID-rvdq-djna-4fhq

vulnerability_id VCID-rvdq-djna-4fhq

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48279.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48279.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-48279

reference_id

reference_type

scores

value	0.00911
scoring_system	epss
scoring_elements	0.76284
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-48279

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48279
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48279

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2163622
reference_id	2163622
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2163622

reference_url

https://github.com/SpiderLabs/ModSecurity/pull/2795

reference_id

2795

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://github.com/SpiderLabs/ModSecurity/pull/2795

reference_url

https://github.com/SpiderLabs/ModSecurity/pull/2797

reference_id

2797

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://github.com/SpiderLabs/ModSecurity/pull/2797

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ/

reference_id

52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/52TGCZCOHYBDCVWJYNN2PS4QLOHCXWTQ/

reference_url

https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/

reference_id

crs-version-3-3-3-and-3-2-2-covering-several-cves

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00023.html

reference_id

msg00023.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00023.html

reference_url	https://access.redhat.com/errata/RHSA-2023:4628
reference_id	RHSA-2023:4628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4628

reference_url	https://access.redhat.com/errata/RHSA-2023:4629
reference_id	RHSA-2023:4629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4629

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI/

reference_id

SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SYRTXTOQQI6SB2TLI5QXU76DURSLS4XI/

reference_url	https://usn.ubuntu.com/6370-1/
reference_id	USN-6370-1
reference_type
scores
url	https://usn.ubuntu.com/6370-1/

reference_url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.6

reference_id

v2.9.6

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v2.9.6

reference_url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v3.0.8

reference_id

v3.0.8

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://github.com/SpiderLabs/ModSecurity/releases/tag/v3.0.8

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL/

reference_id

WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-03T18:41:41Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WCH6JM4I4MD4YABYFHSBDDOUFDGIFJKL/

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.6-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.6-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2022-48279

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rvdq-djna-4fhq

url VCID-t4ma-awa9-hyh6

vulnerability_id VCID-t4ma-awa9-hyh6

summary The mod_security2 module before 2.7.0 for the Apache HTTP Server allows remote attackers to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an invalid part precedes the crafted data.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4528

reference_id

reference_type

scores

value	0.11456
scoring_system	epss
scoring_elements	0.93764
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4528

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4528
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4528

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691146
reference_id	691146
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691146

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/37949.txt
reference_id	CVE-2012-4528;OSVDB-86408
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/37949.txt

reference_url	https://www.securityfocus.com/bid/56096/info
reference_id	CVE-2012-4528;OSVDB-86408
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/56096/info

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.6.6-5?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.6.6-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.6.6-5%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2012-4528

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ma-awa9-hyh6

url VCID-tuy4-5fz5-sudw

vulnerability_id VCID-tuy4-5fz5-sudw

summary ModSecurity before 2.6.6, when used with PHP, does not properly handle single quotes not at the beginning of a request parameter value in the Content-Disposition field of a request with a multipart/form-data Content-Type header, which allows remote attackers to bypass filtering rules and perform other attacks such as cross-site scripting (XSS) attacks. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-5031.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-2751

reference_id

reference_type

scores

value	0.01943
scoring_system	epss
scoring_elements	0.83826
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-2751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2751

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678527
reference_id	678527
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678527

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.6.6-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.6.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.6.6-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2012-2751

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tuy4-5fz5-sudw

url VCID-ubdn-jmy5-h3c4

vulnerability_id VCID-ubdn-jmy5-h3c4

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48866.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48866.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-48866

reference_id

reference_type

scores

value	0.0107
scoring_system	epss
scoring_elements	0.78148
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-48866

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48866
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48866

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107196
reference_id	1107196
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107196

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2369827
reference_id	2369827
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2369827

reference_url

https://github.com/owasp-modsecurity/ModSecurity/commit/3a54ccea62d3f7151bb08cb78d60c5e90b53ca2e

reference_id

3a54ccea62d3f7151bb08cb78d60c5e90b53ca2e

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-02T15:52:43Z/

url

https://github.com/owasp-modsecurity/ModSecurity/commit/3a54ccea62d3f7151bb08cb78d60c5e90b53ca2e

reference_url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-859r-vvv8-rm8r

reference_id

GHSA-859r-vvv8-rm8r

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-02T15:52:43Z/

url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-859r-vvv8-rm8r

reference_url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-f82j-8pp7-cw2w

reference_id

GHSA-f82j-8pp7-cw2w

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-02T15:52:43Z/

url

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-f82j-8pp7-cw2w

reference_url

https://github.com/owasp-modsecurity/ModSecurity/wiki/Reference-Manual-(v2.x)#sanitisearg

reference_id

Reference-Manual-(v2.x)#sanitisearg

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-02T15:52:43Z/

url

https://github.com/owasp-modsecurity/ModSecurity/wiki/Reference-Manual-(v2.x)#sanitisearg

reference_url	https://access.redhat.com/errata/RHSA-2025:12838
reference_id	RHSA-2025:12838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12838

reference_url	https://access.redhat.com/errata/RHSA-2025:13670
reference_id	RHSA-2025:13670
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13670

reference_url	https://access.redhat.com/errata/RHSA-2025:13716
reference_id	RHSA-2025:13716
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13716

reference_url	https://access.redhat.com/errata/RHSA-2025:13775
reference_id	RHSA-2025:13775
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13775

reference_url	https://usn.ubuntu.com/7567-1/
reference_id	USN-7567-1
reference_type
scores
url	https://usn.ubuntu.com/7567-1/

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.10-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.10-1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2025-48866

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ubdn-jmy5-h3c4

url VCID-vx1y-jc6y-hqdc

vulnerability_id VCID-vx1y-jc6y-hqdc

summary The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-2765

reference_id

reference_type

scores

value	0.05375
scoring_system	epss
scoring_elements	0.90309
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-2765

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2765
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2765

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710217
reference_id	710217
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710217

reference_url	http://packetstormsecurity.com/files/121815/modsecurity_cve_2013_2765_check.py.txt
reference_id	CVE-2013-2765;OSVDB-93687
reference_type	exploit
scores
url	http://packetstormsecurity.com/files/121815/modsecurity_cve_2013_2765_check.py.txt

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/25852.py
reference_id	CVE-2013-2765;OSVDB-93687
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/25852.py

fixed_packages

url	pkg:deb/debian/modsecurity-apache@2.6.6-9?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.6.6-9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.6.6-9%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2013-2765

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vx1y-jc6y-hqdc

url VCID-w1gx-9tj6-n3ew

vulnerability_id VCID-w1gx-9tj6-n3ew

summary ModSecurity before 2.5.11 treats request parameter values containing single quotes as files, which allows remote attackers to bypass filtering rules and perform other attacks such as cross-site scripting (XSS) attacks via a single quote in a request parameter in the Content-Disposition field of a request with a multipart/form-data Content-Type header.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-5031

reference_id

reference_type

scores

value	0.00795
scoring_system	epss
scoring_elements	0.74408
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-5031

fixed_packages

url	pkg:deb/debian/modsecurity-apache@0?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@0%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.3-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.3-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.7-1%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.7-1%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.11-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.11-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
purl	pkg:deb/debian/modsecurity-apache@2.9.13-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

aliases CVE-2009-5031

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w1gx-9tj6-n3ew

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/modsecurity-apache@2.9.13-1%3Fdistro=trixie

Package Instance