CVE-2013-4131

Published Jul 31, 2013

Last updated 7 years ago

Overview

Description: The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a denial of service (assertion failure or out-of-bounds read) via a certain (1) COPY, (2) DELETE, or (3) MOVE request against a revision root.
Source: secalert@redhat.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D102460-B5D5-46C4-8021-7C3510A5FCF3"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92265E60-7BBF-4E8E-A438-4132D8FD57BB"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "346DE008-472F-47E1-8B96-F968C7D0A003"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C9BDB22-29E0-48A3-8765-FAC6A3442A35"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA5EB3A7-DE33-42CB-9B5E-646B9D4FFBFB"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F63AB9E5-FD99-40A8-B24F-623BDDBCA427"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CEA6C3E-C41B-4EF9-84E1-72BC6B72D1C6"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0B873C1-E7D6-4E55-A5A7-85000B686071"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87D2E8DD-4225-476A-AF17-7621C9A28391"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40D913E2-0FBD-4F6C-8A21-43A0681237BB"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.7.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B869CEB-7637-48C3-8A4C-171CFB766B97"
          },
          {
            "criteria": "cpe:2.3:a:apache:subversion:1.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC0E7811-3B60-46E7-943C-E0E7ED00FB01"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References