5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.017 Low
EPSS
Percentile
86.3%
CVE-2014-3580 (denial of service)
A NULL pointer dereference flaw was found in the way mod_dav_svn handled
REPORT requests. A remote, unauthenticated attacker could use a crafted
REPORT request to crash mod_dav_svn.
CVE-2014-8108 (denial of service)
A NULL pointer dereference flaw was found in the way mod_dav_svn handled
URIs for virtual transaction names. A remote, unauthenticated attacker
could send a request for a virtual transaction name that does not exist,
causing mod_dav_svn to crash.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | subversion | < 1.8.11-1 | UNKNOWN |