CVE-2025-47947 | OWASP ModSecurity up to 2.9.8 JSON Content Type excessive platform resource consumption within a loop (GHSA-859r-vvv8-rm8r / ID 3389)

Inserito da Angelo Barbosa | Mag 22, 2025 | CVE

A vulnerability, which was classified as critical, was found in OWASP ModSecurity up to 2.9.8. This affects an unknown part of the component JSON Content Type Handler. The manipulation leads to excessive platform resource consumption within a loop.

This vulnerability is uniquely identified as CVE-2025-47947. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-47947 | OWASP ModSecurity up to 2.9.8 JSON Content Type excessive platform resource consumption within a loop (GHSA-859r-vvv8-rm8r / ID 3389)

Post correlati

CVE-2023-41921 | Kiloview P1/P2 up to 4.8.2605 code download (NCSC-2024-0273)

CVE-2024-46212 | REDAXO CMS 5.17.1 export path traversal

CVE-2023-38714 | IBM Cloud Pak System up to 2.3.3.7 iFix1 information exposure

CVE-2025-24372 | CKAN up to 2.10.6/2.11.1 File cross site scripting