CVE-2025-47908 – Apache Middleware Denial of Service Vulnerability

August 6, 2025

CVE ID : CVE-2025-47908

Published : Aug. 6, 2025, 9:15 p.m. | 3 hours, 47 minutes ago

Description : Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the middleware/server as an attempt to cause a denial of service.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-50740 – AutoConnect Arduino Library XSS Vulnerability

Next Article CVE-2025-46660 – 4C Strategies Exonaut Hashing Without Salt Vulnerability

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-47908 – Apache Middleware Denial of Service Vulnerability

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

CVE-2025-5245 – GNU Binutils Debug Type Samep Memory Corruption Vulnerability

CVE-2024-27779 – FortiSandbox FortiIsolator Insufficient Session Expiration Vulnerability

‘Honderden SAP NetWeaver-installaties bevatten zeer kritiek lek’

Best 123Movies Alternatives in 2025 (Free & Legal Streaming Options)

LinkedIn: Top 10 Large Companies for Career Growth in US

Tariff war has tech buyers wondering what’s next. Here’s what we know

sherpa-onnx is speech-to-text and text-to-speech software

Cl0p cybercrime gang’s data exfiltration tool found vulnerable to RCE attacks

CVE-2025-47908 – Apache Middleware Denial of Service Vulnerability

Related Posts