Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache subversion 1.7.12 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2013-4558
The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service (assertion...
Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.7.13Apache Mod Dav Svn -Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.8.1Apache Subversion 1.8.2
NA
CVE-2014-0032
The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the server root and request methods...
Apache Subversion 1.8.1Apache Subversion 1.8.2Apache Subversion 1.8.5Apache Subversion 1.8.0Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.6Apache Subversion 1.7.7Apache SubversionApache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion 1.7.8Apache Subversion 1.7.9
NA
CVE-2013-4505
The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions and possibly cause a denial of service (resource consumption) via a relative URL in a REPORT request....
Apache Mod Dontdothat -Apache Subversion 1.8.1Apache Subversion 1.4.0Apache Subversion 1.5.0Apache Subversion 1.5.1Apache Subversion 1.5.8Apache Subversion 1.6.0Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.7.1Apache Subversion 1.7.10Apache Subversion 1.4.5Apache Subversion 1.4.6Apache Subversion 1.5.6Apache Subversion 1.5.7Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.21Apache Subversion 1.6.23Apache Subversion 1.6.9Apache Subversion 1.7.0Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.4.1Apache Subversion 1.4.2Apache Subversion 1.5.2Apache Subversion 1.5.3Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.7.2Apache Subversion 1.7.9Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.4.3Apache Subversion 1.4.4Apache Subversion 1.5.4Apache Subversion 1.5.5Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.2Apache Subversion 1.6.20Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.7.3Apache Subversion 1.7.4
NA
CVE-2015-3184
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name....
Apple XcodeApache Subversion 1.7.7Apache Subversion 1.7.6Apache Subversion 1.7.17Apache Subversion 1.7.16Apache Subversion 1.7.0Apache Subversion 1.7.20Apache Subversion 1.8.3Apache Subversion 1.8.2Apache Subversion 1.7.9Apache Subversion 1.7.8Apache Subversion 1.7.19Apache Subversion 1.7.18Apache Subversion 1.7.11Apache Subversion 1.7.10Apache Subversion 1.7.1Apache Subversion 1.8.5Apache Subversion 1.8.4Apache Subversion 1.8.1Apache Subversion 1.7.5Apache Subversion 1.7.4Apache Subversion 1.7.15Apache Subversion 1.7.14Apache Subversion 1.8.9Apache Subversion 1.8.8Apache Subversion 1.8.0Apache Subversion 1.8.11Apache Subversion 1.7.3Apache Subversion 1.7.2Apache Subversion 1.7.13Apache Subversion 1.7.12Apache Subversion 1.8.7Apache Subversion 1.8.6Apache Subversion 1.8.13Apache Subversion 1.8.10
6.5
CVSSv3
CVE-2016-8734
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU...
Apache Subversion 1.5.2Apache Subversion 1.5.3Apache Subversion 1.5.4Apache Subversion 1.5.5Apache Subversion 1.5.6Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.16Apache Subversion 1.9.0Apache Subversion 1.9.1Apache Subversion 1.9.2Apache Subversion 1.4.6Apache Subversion 1.5.1Apache Subversion 1.5.8Apache Subversion 1.6.1Apache Subversion 1.6.6Apache Subversion 1.6.8Apache Subversion 1.6.15Apache Subversion 1.6.17Apache Subversion 1.7.1Apache Subversion 1.7.3Apache Subversion 1.7.8Apache Subversion 1.7.10Apache Subversion 1.7.17Apache Subversion 1.7.19Apache Subversion 1.8.5Apache Subversion 1.8.7Apache Subversion 1.8.12Apache Subversion 1.8.14Apache Subversion 1.9.4Apache Subversion 1.4.1Apache Subversion 1.4.2Apache Subversion 1.4.3Apache Subversion 1.4.4Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.6.21Apache Subversion 1.6.23Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion 1.7.14Apache Subversion 1.7.15Apache Subversion 1.8.8Apache Subversion 1.8.9Apache Subversion 1.8.10Apache Subversion 1.8.11Apache Subversion 1.4.0Apache Subversion 1.4.5Apache Subversion 1.5.0Apache Subversion 1.5.7Apache Subversion 1.6.0Apache Subversion 1.6.7Apache Subversion 1.6.9Apache Subversion 1.6.14Apache Subversion 1.6.16Apache Subversion 1.7.0Apache Subversion 1.7.2Apache Subversion 1.7.9Apache Subversion 1.7.11Apache Subversion 1.7.16Apache Subversion 1.7.18Apache Subversion 1.7.20Apache Subversion 1.8.4Apache Subversion 1.8.6Apache Subversion 1.8.13Apache Subversion 1.8.15Apache Subversion 1.9.3Debian Debian Linux 8.0Debian Debian Linux 9.0
NA
CVE-2015-0251
The mod_dav_svn server in Subversion 1.5.0 through 1.7.19 and 1.8.0 through 1.8.11 allows remote authenticated users to spoof the svn:author property via a crafted v1 HTTP protocol request sequences....
Apache Subversion 1.7.4Apache Subversion 1.7.3Apache Subversion 1.7.14Apache Subversion 1.7.13Apache Subversion 1.6.7Apache Subversion 1.6.6Apache Subversion 1.6.2Apache Subversion 1.6.19Apache Subversion 1.6.12Apache Subversion 1.6.11Apache Subversion 1.5.4Apache Subversion 1.5.3Apache Subversion 1.8.4Apache Subversion 1.8.5Apache Subversion 1.7.8Apache Subversion 1.7.7Apache Subversion 1.7.18Apache Subversion 1.7.17Apache Subversion 1.7.10Apache Subversion 1.7.1Apache Subversion 1.6.3Apache Subversion 1.6.23Apache Subversion 1.6.16Apache Subversion 1.6.15Apache Subversion 1.6.0Apache Subversion 1.5.8Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.8.8Apache Subversion 1.8.9Apache Subversion 1.5.0Apache Subversion 1.7.9Apache Subversion 1.7.2Apache Subversion 1.7.19Apache Subversion 1.7.12Apache Subversion 1.7.11Apache Subversion 1.6.5Apache Subversion 1.6.4Apache Subversion 1.6.18Apache Subversion 1.6.17Apache Subversion 1.6.10Apache Subversion 1.6.1Apache Subversion 1.5.2Apache Subversion 1.5.1Apache Subversion 1.8.6Apache Subversion 1.8.7Apache Subversion 1.7.6Apache Subversion 1.7.5Apache Subversion 1.7.16Apache Subversion 1.7.15Apache Subversion 1.7.0Apache Subversion 1.6.9Apache Subversion 1.6.8Apache Subversion 1.6.21Apache Subversion 1.6.20Apache Subversion 1.6.14Apache Subversion 1.6.13Apache Subversion 1.5.7Apache Subversion 1.5.6Apache Subversion 1.5.5Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.10Apache Subversion 1.8.11Opensuse Opensuse 13.2Opensuse Opensuse 13.1Redhat Enterprise Linux Server Eus 6.7.zRedhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Hpc Node 6.0Redhat Enterprise Linux Desktop 6.0Oracle Solaris 11.3Apple Xcode 7.0
NA
CVE-2014-3580
The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist....
Redhat Enterprise Linux Server Eus 6.6.zRedhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Hpc Node 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Hpc Node 6.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Workstation 6.0Apache Subversion 1.0.6Apache Subversion 1.0.7Apache Subversion 1.1.4Apache Subversion 1.2.0Apache Subversion 1.2.1Apache Subversion 1.4.1Apache Subversion 1.4.2Apache Subversion 1.5.2Apache Subversion 1.5.3Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.7.12Apache Subversion 1.0.4Apache Subversion 1.0.5Apache Subversion 1.1.2Apache Subversion 1.1.3Apache Subversion 1.3.2Apache Subversion 1.4.0Apache Subversion 1.5.0Apache Subversion 1.5.1Apache Subversion 1.5.8Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.18Apache Subversion 1.7.19Apache Subversion 1.7.8Apache Subversion 1.7.9Apache Subversion 1.8.7Apache Subversion 1.8.8Apache Subversion 1.0.2Apache Subversion 1.0.3Apache Subversion 1.1.0Apache Subversion 1.1.1Apache Subversion 1.3.0Apache Subversion 1.3.1Apache Subversion 1.4.5Apache Subversion 1.4.6Apache Subversion 1.5.6Apache Subversion 1.5.7Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.21Apache Subversion 1.6.23Apache Subversion 1.6.9Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.16Apache Subversion 1.7.17Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.8.5Apache Subversion 1.8.6Apache Subversion 1.7.13Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.8.9Apache Subversion 1.8.10Apache Subversion 1.0.0Apache Subversion 1.0.1Apache Subversion 1.0.8Apache Subversion 1.0.9Apache Subversion 1.2.2Apache Subversion 1.2.3Apache Subversion 1.4.3Apache Subversion 1.4.4Apache Subversion 1.5.4Apache Subversion 1.5.5Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.2Apache Subversion 1.6.20Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.7.14Apache Subversion 1.7.15Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.4Debian Debian Linux 7.0Apple Xcode 6.1.1
NA
CVE-2014-3528
Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers to obtain the credentials via a crafted authentication realm....
Opensuse Opensuse 12.3Opensuse Opensuse 13.1Apache Subversion 1.3.0Apache Subversion 1.1.0Apache Subversion 1.1.1Apache Subversion 1.0.3Apache Subversion 1.0.4Apache Subversion 1.8.8Apache Subversion 1.8.9Apache Subversion 1.8.6Apache Subversion 1.7.16Apache Subversion 1.7.14Apache Subversion 1.7.15Apache Subversion 1.7.2Apache Subversion 1.7.9Apache Subversion 1.6.0Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.23Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.5.1Apache Subversion 1.5.2Apache Subversion 1.4.0Apache Subversion 1.4.1Apache Subversion 1.3.1Apache Subversion 1.3.2Apache Subversion 1.1.2Apache Subversion 1.1.3Apache Subversion 1.0.5Apache Subversion 1.0.6Apache Subversion 1.0.7Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.5.3Apache Subversion 1.5.4Apache Subversion 1.4.2Apache Subversion 1.4.3Apache Subversion 1.2.2Apache Subversion 1.2.3Apache Subversion 1.0.1Apache Subversion 1.0.2Apache Subversion 1.7.17Apache Subversion 1.8.7Apache Subversion 1.8.4Apache Subversion 1.8.5Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.20Apache Subversion 1.6.21Apache Subversion 1.6.9Apache Subversion 1.5.0Apache Subversion 1.5.7Apache Subversion 1.5.8Apache Subversion 1.4.6Apache Subversion 1.2.0Apache Subversion 1.2.1Apache Subversion 1.1.4Apache Subversion 1.0.0Apache Subversion 1.0.8Apache Subversion 1.0.9Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.19Apache Subversion 1.6.2Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.5.5Apache Subversion 1.5.6Apache Subversion 1.4.4Apache Subversion 1.4.5Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Apple Xcode 6.1.1Redhat Enterprise Linux Workstation 6.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Hpc Node 7.0Redhat Enterprise Linux Desktop 6.0Redhat Enterprise Linux Server 6.0Redhat Enterprise Linux Server Eus 6.6.zRedhat Enterprise Linux Hpc Node 6.0Redhat Enterprise Linux Desktop 7.0
NA
CVE-2014-3522
The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted...
Apache Subversion 1.7.17Apache Subversion 1.8.7Apache Subversion 1.8.5Apache Subversion 1.8.6Apache Subversion 1.7.13Apache Subversion 1.7.14Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.21Apache Subversion 1.6.23Apache Subversion 1.6.9Apache Subversion 1.5.0Apache Subversion 1.5.8Apache Subversion 1.4.0Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.2Apache Subversion 1.6.20Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.5.6Apache Subversion 1.5.7Apache Subversion 1.4.5Apache Subversion 1.4.6Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.7.1Apache Subversion 1.7.10Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.5.4Apache Subversion 1.5.5Apache Subversion 1.4.3Apache Subversion 1.4.4Apache Subversion 1.8.8Apache Subversion 1.8.9Apache Subversion 1.7.16Apache Subversion 1.7.0Apache Subversion 1.7.15Apache Subversion 1.7.2Apache Subversion 1.7.9Apache Subversion 1.6.0Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.5.1Apache Subversion 1.5.2Apache Subversion 1.5.3Apache Subversion 1.4.1Apache Subversion 1.4.2Opensuse Opensuse 12.3Opensuse Opensuse 13.1Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 14.04Apple Xcode 6.1.1
NA
CVE-2013-4277
Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option....
Apache Subversion 1.7.7Apache Subversion 1.7.6Apache Subversion 1.7.0Apache Subversion 1.6.9Apache Subversion 1.6.21Apache Subversion 1.6.20Apache Subversion 1.6.14Apache Subversion 1.6.13Apache Subversion 1.5.7Apache Subversion 1.5.6Apache Subversion 1.4.5Apache Subversion 1.4.4Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.7.3Apache Subversion 1.7.2Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.4Apache Subversion 1.6.18Apache Subversion 1.6.17Apache Subversion 1.6.10Apache Subversion 1.6.1Apache Subversion 1.5.2Apache Subversion 1.5.1Apache Subversion 1.4.1Apache Subversion 1.4.0Apache Subversion 1.7.9Apache Subversion 1.7.8Apache Subversion 1.7.10Apache Subversion 1.7.1Apache Subversion 1.6.3Apache Subversion 1.6.23Apache Subversion 1.6.16Apache Subversion 1.6.15Apache Subversion 1.6.0Apache Subversion 1.5.8Apache Subversion 1.5.0Apache Subversion 1.4.6Apache Subversion 1.7.12Apache Subversion 1.7.11Apache Subversion 1.7.5Apache Subversion 1.7.4Apache Subversion 1.6.8Apache Subversion 1.6.7Apache Subversion 1.6.2Apache Subversion 1.6.19Apache Subversion 1.6.12Apache Subversion 1.6.11Apache Subversion 1.5.5Apache Subversion 1.5.4Apache Subversion 1.5.3Apache Subversion 1.4.3Apache Subversion 1.4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remoteCVE-2022-47986CVE-2023-20963CVE-2023-1013CVE-2022-43628CVE-2023-1014log injectionCVE-2022-43639SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook