5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.017 Low
EPSS
Percentile
87.6%
Subversion Project reports:
Subversion’s mod_dav_svn Apache HTTPD server module will crash when it
receives a REPORT request for some invalid formatted special URIs.
Subversion’s mod_dav_svn Apache HTTPD server module will crash when it
receives a request for some invalid formatted special URIs.
We consider this to be a medium risk vulnerability. Repositories which
allow for anonymous reads will be vulnerable without authentication.
Unfortunately, no special configuration is required and all mod_dav_svn
servers are vulnerable.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | mod_dav_svn | = 1.8.0 | UNKNOWN |
FreeBSD | any | noarch | mod_dav_svn | < 1.8.11 | UNKNOWN |
FreeBSD | any | noarch | subversion16 | = 1.0.0 | UNKNOWN |
FreeBSD | any | noarch | subversion16 | < 1.7.19 | UNKNOWN |
FreeBSD | any | noarch | subversion17 | = 1.0.0 | UNKNOWN |
FreeBSD | any | noarch | subversion17 | < 1.7.19 | UNKNOWN |
FreeBSD | any | noarch | subversion | = 1.0.0 | UNKNOWN |
FreeBSD | any | noarch | subversion | < 1.7.19 | UNKNOWN |