Esadcetiner

**Name of the Vulnerable Software and Affected Versions** libModSecurity3 versions prior to 3.0.15 **Description** A segmentation fault occurs when a rule using the `t:hexDecode` transformation inspects a query string parameter containing a single character. This allows an attacker to crash worker processes, resulting in a denial of service. Service resumes automatically as worker processes recover from the segmentation fault once the attack ceases. **Recommendations** Update to version 3.0.15.