What is CVE-2025-52891?

CVE-2025-52891 is a medium-severity vulnerability in Owasp-modsecurity Modsecurity, classified under Improper Input Validation. CVSS score: 6.5/10. Published 2025-07-02.

How severe is CVE-2025-52891?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Improper input validation in Owasp-modsecurity Modsecurity

CVE-2025-52891

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. In versions 2.9.8 to before 2.9.11, an empty XML tag can cause a segmentation fault. If SecParseXmlIntoArgs is set to On or Only…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.002 (46.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H.

Affected products

Owasp-modsecurity Modsecurity — versions >= 2.9.8, < 2.9.11

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-gw9c-4wfm-vj3x (x_refsource_CONFIRM)
https://github.com/owasp-modsecurity/ModSecurity/commit/ecd7b9736836eee391d25f35d5bd06a3ce35a45d (x_refsource_MISC)

Frequently asked questions

What is CVE-2025-52891?: CVE-2025-52891 is a medium-severity vulnerability in Owasp-modsecurity Modsecurity, classified under Improper Input Validation. CVSS score: 6.5/10. Published 2025-07-02.
How severe is CVE-2025-52891?: Medium severity. CVSS v3 base score is 6.5 out of 10.