Subversion Security Vulnerabilities and Issues — Subversion CVE List

Lucene search

ApacheSubversion

5 matches found

CVE•added 2013/05/02 2:55 p.m.•75 views

CVE-2013-1846

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL.

4CVSS5.9AI score0.00956EPSS

CVE•added 2013/05/02 2:55 p.m.•68 views

CVE-2013-1845

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (memory consumption) by (1) setting or (2) deleting a large number of properties for a file or directory.

2.1CVSS6AI score0.00915EPSS

CVE•added 2013/05/02 2:55 p.m.•65 views

CVE-2013-1847

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.

5CVSS6.3AI score0.30761EPSS

CVE•added 2013/05/02 2:55 p.m.•64 views

CVE-2013-1849

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a PROPFIND request for an activity URL.

4.3CVSS6.3AI score0.12583EPSS

CVE•added 2013/05/02 2:55 p.m.•46 views

CVE-2013-1884

The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an invalid limit, which triggers an access of an uninitialized variable.

5CVSS6.3AI score0.26312EPSS