CVE-2019-19886
HIGH7.5EPSS 4.0%發布日:2020/1/21修改日:2026/4/28
也稱為:DEBIAN-CVE-2019-19886
描述
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeader in transaction.cc.
受影響套件(1)
- Debian/modsecurityfrom 0, < 3.0.4-1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |