all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ModSecurity WAF Flaw Let Hackers Trigger DoS Attack

Add to bookmarks
July 27, 2023, 1:21 p.m. | Tushar Subhra Dutta

Cyber Security News cybersecuritynews.com

Trustwave’s open-source Web Application Firewall (WAF) engine, ModSecurity, faces DoS risk due to four transformation actions vulnerability. Cybersecurity researchers at Trustwave identified this flaw and alerted the ModSecurity team about their detection. The vulnerability was tracked as CVE-2023-38285. However, the security developers at the ModSecurity team fixed this flaw by releasing the fixes in v3.0.10, […]


The post ModSecurity WAF Flaw Let Hackers Trigger DoS Attack appeared first on Cyber Security News.

actions application attack cve cyber security cybersecurity detection developers dos dos attack engine firewall flaw hackers modsecurity researchers risk security team transformation trigger trustwave vulnerability waf web web application web application firewall web security

Visit resource

More from cybersecuritynews.com / Cyber Security News

NVIDIA ChatRTX for Windows Vulnerability Lets Attackers Escalate Privileges 44 minutes ago | cybersecuritynews.com
access application attackers authorization +19
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories) 18 hours ago | cybersecuritynews.com
attack attacks attack vectors breaches +16
Russian Hackers Exploit Outlook Flaw to Hijack Numerous Email Accounts 1 day, 18 hours ago | cybersecuritynews.com
accounts agency apt28 bear +37
Android Bug Leaks DNS Traffic to Hackers While Switching VPN Servers 2 days, 1 hour ago | cybersecuritynews.com
android android 14 bug critical +21
ShadowSyndicate Hackers Exploit Aiohttp Vulnerability To Steal Sensitive Data 2 days, 17 hours ago | cybersecuritynews.com
access aiohttp vulnerability asynchronous attackers +25
Florida Man Arrested For Selling Fake Cisco Device To U.S. Military 2 days, 17 hours ago | cybersecuritynews.com
arrested cisco computer counterfeit +25
How U.S K-12 Schools Can Solve Their Top 10 Cybersecurity Challenges – Free E-Book 2 days, 17 hours ago | cybersecuritynews.com
access book can challenges +27
AI-Based Webshell Detection Model – Detailed Overview 2 days, 18 hours ago | cybersecuritynews.com
access ai-based security attackers code +23
Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across the Globe 2 days, 20 hours ago | cybersecuritynews.com
android bsd critical cyber security +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com
View more jobs