CVE-2025-54571

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. In versions 2.9.11 and below, an attacker can override the HTTP response’s Content-Type, which could lead to several issues depending on the HTTP scenario. For example, we have demonstrated the potential for XSS and arbitrary script source code disclosure in the latest version of mod_security2. This issue is fixed in version 2.9.12.

CVSS v3 6.1 MEDIUM

6.1^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://github.com/owasp-modsecurity/ModSecurity/commit/6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8	Patch
https://github.com/owasp-modsecurity/ModSecurity/issues/2514	Exploit Issue Tracking
https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v	Exploit Vendor Advisory
https://lists.debian.org/debian-lts-announce/2025/09/msg00008.html
https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:owasp:modsecurity:*:*:*:*:*:*:*:*

History

03 Nov 2025, 19:16

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2025/09/msg00008.html -

09 Oct 2025, 17:34

Type	Values Removed	Values Added
CWE		CWE-79
CPE		cpe:2.3:a:owasp:modsecurity::::::::
First Time		Owasp Owasp modsecurity
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.1
References	~~() https://github.com/owasp-modsecurity/ModSecurity/commit/6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8 -~~	() https://github.com/owasp-modsecurity/ModSecurity/commit/6d7e8eb18f2d7d368fb8e29516fcdeaeb8d349b8 - Patch
References	~~() https://github.com/owasp-modsecurity/ModSecurity/issues/2514 -~~	() https://github.com/owasp-modsecurity/ModSecurity/issues/2514 - Exploit, Issue Tracking
References	~~() https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v -~~	() https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v - Exploit, Vendor Advisory

06 Aug 2025, 21:15

Type	Values Removed	Values Added
References	~~() https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v -~~	() https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-cg44-9m43-3f9v -

06 Aug 2025, 20:23

Type	Values Removed	Values Added
Summary		(es) ModSecurity es un motor de firewall de aplicaciones web (WAF) multiplataforma de código abierto para Apache, IIS y Nginx. En las versiones 2.9.11 y anteriores, un atacante puede anular el tipo de contenido de la respuesta HTTP, lo que podría causar diversos problemas según el escenario HTTP. Por ejemplo, hemos demostrado la posibilidad de XSS y la divulgación arbitraria del código fuente de scripts en la última versión de mod_security2. Este problema se ha corregido en la versión 2.9.12.

06 Aug 2025, 00:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-06 00:15

Updated : 2025-11-03 19:16

NVD link : CVE-2025-54571

Mitre link : CVE-2025-54571

CVE.ORG link : CVE-2025-54571

JSON object : View

Products Affected

owasp

modsecurity

CWE

CWE-252

Unchecked Return Value

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.1 /10