Lucene search

RedhatCVE-2013-1846

HistoryMay 02, 2013 - 2:55 p.m.

CVE-2013-1846

2013-05-0214:55:05

CWE-119

redhat

web.nvd.nist.gov

cve-2013-1846

mod_dav_svn

apache httpd

subversion

denial of service

null pointer dereference

crash

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

5.9

Confidence

Low

EPSS

0.004

Percentile

73.3%

JSON

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL.

Affected configurations

Nvd

Node

apachesubversionRange≤1.6.20

apachesubversionMatch1.6.0

apachesubversionMatch1.6.1

apachesubversionMatch1.6.2

apachesubversionMatch1.6.3

apachesubversionMatch1.6.4

apachesubversionMatch1.6.5

apachesubversionMatch1.6.6

apachesubversionMatch1.6.7

apachesubversionMatch1.6.8

apachesubversionMatch1.6.9

apachesubversionMatch1.6.10

apachesubversionMatch1.6.11

apachesubversionMatch1.6.12

apachesubversionMatch1.6.13

apachesubversionMatch1.6.14

apachesubversionMatch1.6.15

apachesubversionMatch1.6.16

apachesubversionMatch1.6.17

apachesubversionMatch1.6.18

apachesubversionMatch1.6.19

Node

apachesubversionMatch1.7.0

apachesubversionMatch1.7.1

apachesubversionMatch1.7.2

apachesubversionMatch1.7.3

apachesubversionMatch1.7.4

apachesubversionMatch1.7.5

apachesubversionMatch1.7.6

apachesubversionMatch1.7.7

Node

opensuseopensuseMatch12.1

opensuseopensuseMatch12.2

opensuseopensuseMatch12.3

VendorProductVersionCPE
apachesubversion*cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*
apachesubversion1.6.0cpe:2.3:a:apache:subversion:1.6.0:*:*:*:*:*:*:*
apachesubversion1.6.1cpe:2.3:a:apache:subversion:1.6.1:*:*:*:*:*:*:*
apachesubversion1.6.2cpe:2.3:a:apache:subversion:1.6.2:*:*:*:*:*:*:*
apachesubversion1.6.3cpe:2.3:a:apache:subversion:1.6.3:*:*:*:*:*:*:*
apachesubversion1.6.4cpe:2.3:a:apache:subversion:1.6.4:*:*:*:*:*:*:*
apachesubversion1.6.5cpe:2.3:a:apache:subversion:1.6.5:*:*:*:*:*:*:*
apachesubversion1.6.6cpe:2.3:a:apache:subversion:1.6.6:*:*:*:*:*:*:*
apachesubversion1.6.7cpe:2.3:a:apache:subversion:1.6.7:*:*:*:*:*:*:*
apachesubversion1.6.8cpe:2.3:a:apache:subversion:1.6.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apache	subversion	*	cpe:2.3:a:apache:subversion::::::::
apache	subversion	1.6.0	cpe:2.3:a:apache:subversion:1.6.0:::::::*
apache	subversion	1.6.1	cpe:2.3:a:apache:subversion:1.6.1:::::::*
apache	subversion	1.6.2	cpe:2.3:a:apache:subversion:1.6.2:::::::*
apache	subversion	1.6.3	cpe:2.3:a:apache:subversion:1.6.3:::::::*
apache	subversion	1.6.4	cpe:2.3:a:apache:subversion:1.6.4:::::::*
apache	subversion	1.6.5	cpe:2.3:a:apache:subversion:1.6.5:::::::*
apache	subversion	1.6.6	cpe:2.3:a:apache:subversion:1.6.6:::::::*
apache	subversion	1.6.7	cpe:2.3:a:apache:subversion:1.6.7:::::::*
apache	subversion	1.6.8	cpe:2.3:a:apache:subversion:1.6.8:::::::*