Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache subversion 1.7.6 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2013-1884
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an invalid limit, which triggers an access of an uninitialized variable....
Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7
4.3
CVSSv2
CVE-2014-0032
The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the server root and request methods...
Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.8.5Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion
4
CVSSv2
CVE-2013-4131
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a denial of service (assertion failure or out-of-bounds read) via a certain (1) COPY, (2) DELETE, or (3) MOVE request against a...
Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9Apache Subversion 1.7.10Apache Subversion 1.8.0
4.3
CVSSv2
CVE-2013-1849
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a PROPFIND request for an activity URL....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8
5
CVSSv2
CVE-2013-1847
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8
4
CVSSv2
CVE-2013-1846
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache SubversionApache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Opensuse Opensuse 12.1Opensuse Opensuse 12.2Opensuse Opensuse 12.3
2.1
CVSSv2
CVE-2013-1845
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (memory consumption) by (1) setting or (2) deleting a large number of properties for a file or directory....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Opensuse Opensuse 12.1Opensuse Opensuse 12.2Opensuse Opensuse 12.3
5
CVSSv2
CVE-2015-3184
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name....
Apple XcodeApache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion 1.7.14Apache Subversion 1.7.15Apache Subversion 1.7.16Apache Subversion 1.7.17Apache Subversion 1.7.18Apache Subversion 1.7.19Apache Subversion 1.7.20Apache Subversion 1.8.0Apache Subversion 1.8.1Apache Subversion 1.8.2Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.8.5Apache Subversion 1.8.6Apache Subversion 1.8.7Apache Subversion 1.8.8Apache Subversion 1.8.9Apache Subversion 1.8.10Apache Subversion 1.8.11Apache Subversion 1.8.13
7.8
CVSSv2
CVE-2013-2112
The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache SubversionCollabnet Subversion 1.6.17Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Opensuse Opensuse 11.4
5.5
CVSSv2
CVE-2013-1968
Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name....
Apache Subversion 1.6.0Apache Subversion 1.6.1Apache Subversion 1.6.2Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.9Apache Subversion 1.6.10Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.20Apache SubversionCollabnet Subversion 1.6.17Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Opensuse Opensuse 11.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
byte structXSSCVE-2021-27065byte struct projectquinnNULL pointer dereferenceCVE-2021-25336CVE-2021-27907CVE-2021-26858CVE-2021-25339local usersinternmentCVE-2021-28032