Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache subversion 1.7.1 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2013-1884
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an invalid limit, which triggers an access of an uninitialized variable....
Apache Subversion 1.7.0Apache Subversion 1.7.7Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.1Apache Subversion 1.7.2
NA
CVE-2013-4131
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a denial of service (assertion failure or out-of-bounds read) via a certain (1) COPY, (2) DELETE, or (3) MOVE request against a...
Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.10Apache Subversion 1.8.0Apache Subversion 1.7.3Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.0Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.9
NA
CVE-2014-0032
The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the server root and request methods...
Apache Subversion 1.8.1Apache Subversion 1.8.2Apache Subversion 1.8.5Apache Subversion 1.8.0Apache Subversion 1.8.3Apache Subversion 1.8.4Apache Subversion 1.7.10Apache Subversion 1.7.11Apache Subversion 1.7.6Apache Subversion 1.7.7Apache SubversionApache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.12Apache Subversion 1.7.13Apache Subversion 1.7.8Apache Subversion 1.7.9
NA
CVE-2013-1849
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a PROPFIND request for an activity URL....
Apache Subversion 1.6.0Apache Subversion 1.6.7Apache Subversion 1.6.13Apache Subversion 1.6.8Apache Subversion 1.6.17Apache Subversion 1.6.2Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.9Apache Subversion 1.6.15Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.11Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.6.14Apache Subversion 1.6.16Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.12Apache Subversion 1.6.18Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.0Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.7.3Apache Subversion 1.7.4
NA
CVE-2013-1845
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (memory consumption) by (1) setting or (2) deleting a large number of properties for a file or directory....
Apache Subversion 1.6.19Apache Subversion 1.6.12Apache Subversion 1.6.11Apache Subversion 1.6.4Apache Subversion 1.6.3Apache Subversion 1.6.16Apache Subversion 1.6.15Apache Subversion 1.6.8Apache Subversion 1.6.7Apache Subversion 1.6.0Apache Subversion 1.6.20Apache Subversion 1.6.14Apache Subversion 1.6.13Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.18Apache Subversion 1.6.17Apache Subversion 1.6.10Apache Subversion 1.6.9Apache Subversion 1.6.2Apache Subversion 1.6.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.6Apache Subversion 1.7.7Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.8Apache Subversion 1.7.4Apache Subversion 1.7.5Opensuse Opensuse 12.1Opensuse Opensuse 12.3Opensuse Opensuse 12.2
NA
CVE-2015-3184
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name....
Apple XcodeApache Subversion 1.7.7Apache Subversion 1.7.6Apache Subversion 1.7.17Apache Subversion 1.7.16Apache Subversion 1.7.0Apache Subversion 1.7.20Apache Subversion 1.8.3Apache Subversion 1.8.2Apache Subversion 1.7.9Apache Subversion 1.7.8Apache Subversion 1.7.19Apache Subversion 1.7.18Apache Subversion 1.7.11Apache Subversion 1.7.10Apache Subversion 1.7.1Apache Subversion 1.8.5Apache Subversion 1.8.4Apache Subversion 1.8.1Apache Subversion 1.7.5Apache Subversion 1.7.4Apache Subversion 1.7.15Apache Subversion 1.7.14Apache Subversion 1.8.9Apache Subversion 1.8.8Apache Subversion 1.8.0Apache Subversion 1.8.11Apache Subversion 1.7.3Apache Subversion 1.7.2Apache Subversion 1.7.13Apache Subversion 1.7.12Apache Subversion 1.8.7Apache Subversion 1.8.6Apache Subversion 1.8.13Apache Subversion 1.8.10
NA
CVE-2013-1847
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist....
Apache Subversion 1.6.15Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.11Apache Subversion 1.6.19Apache Subversion 1.6.20Apache Subversion 1.6.0Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.17Apache Subversion 1.6.2Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.9Apache Subversion 1.6.13Apache Subversion 1.6.14Apache Subversion 1.6.16Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.12Apache Subversion 1.6.18Apache Subversion 1.7.5Apache Subversion 1.7.1Apache Subversion 1.7.2Apache Subversion 1.7.0Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.7.6Apache Subversion 1.7.3Apache Subversion 1.7.4
NA
CVE-2013-1846
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL....
Apache SubversionApache Subversion 1.6.12Apache Subversion 1.6.11Apache Subversion 1.6.4Apache Subversion 1.6.3Apache Subversion 1.6.14Apache Subversion 1.6.13Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.17Apache Subversion 1.6.16Apache Subversion 1.6.15Apache Subversion 1.6.8Apache Subversion 1.6.7Apache Subversion 1.6.0Apache Subversion 1.6.19Apache Subversion 1.6.18Apache Subversion 1.6.10Apache Subversion 1.6.9Apache Subversion 1.6.2Apache Subversion 1.6.1Apache Subversion 1.7.2Apache Subversion 1.7.3Apache Subversion 1.7.0Apache Subversion 1.7.1Apache Subversion 1.7.7Apache Subversion 1.7.4Apache Subversion 1.7.5Apache Subversion 1.7.6Opensuse Opensuse 12.2Opensuse Opensuse 12.1Opensuse Opensuse 12.3
NA
CVE-2013-2112
The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection....
Apache Subversion 1.6.15Apache Subversion 1.6.3Apache Subversion 1.6.2Apache Subversion 1.6.11Apache Subversion 1.6.10Apache Subversion 1.6.17Apache Subversion 1.6.14Apache Subversion 1.6.20Apache Subversion 1.6.7Apache Subversion 1.6.6Apache Subversion 1.6.16Apache Subversion 1.6.13Apache Subversion 1.6.19Apache Subversion 1.6.18Apache Subversion 1.6.5Apache Subversion 1.6.4Apache Subversion 1.6.12Collabnet Subversion 1.6.17Apache SubversionApache Subversion 1.6.1Apache Subversion 1.6.0Apache Subversion 1.6.9Apache Subversion 1.6.8Apache Subversion 1.7.4Apache Subversion 1.7.3Apache Subversion 1.7.0Apache Subversion 1.7.8Apache Subversion 1.7.7Apache Subversion 1.7.2Apache Subversion 1.7.1Apache Subversion 1.7.6Apache Subversion 1.7.5Apache Subversion 1.7.9Opensuse Opensuse 11.4Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 12.04
NA
CVE-2013-1968
Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name....
Apache Subversion 1.6.2Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.9Apache Subversion 1.6.20Apache Subversion 1.6.19Apache Subversion 1.6.6Apache Subversion 1.6.5Apache Subversion 1.6.13Apache Subversion 1.6.12Apache Subversion 1.6.18Apache Subversion 1.6.15Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.6.11Collabnet Subversion 1.6.17Apache Subversion 1.6.17Apache SubversionApache Subversion 1.6.14Apache Subversion 1.6.0Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.6.16Apache Subversion 1.7.6Apache Subversion 1.7.0Apache Subversion 1.7.9Apache Subversion 1.7.7Apache Subversion 1.7.2Apache Subversion 1.7.1Apache Subversion 1.7.4Apache Subversion 1.7.3Apache Subversion 1.7.5Apache Subversion 1.7.8Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 12.04Opensuse Opensuse 11.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30758CSRFCVE-2021-44228CVE-2023-33633XPath injectionCVE-2023-33735CVE-2023-29336CVE-2023-34312cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook