Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDF69E1F09-E39B-11E5-9F77-5453ED2E2B49
HistoryJan 18, 2015 - 12:00 a.m.

websvn -- information disclosure

2015-01-1800:00:00
vuxml.freebsd.org
12

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

54.7%

JSON

Thijs Kinkhorst reports:

James Clawson reported:
“Arbitrary files with a known path can be accessed in websvn by
committing a symlink to a repository and then downloading the file
(using the download link).
An attacker must have write access to the repo, and the download
option must have been enabled in the websvn config file.”

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchwebsvn< 2.3.3_1UNKNOWN

Related

nessus 5
openvas 5
cve 1
fedora 2
cvelist 1
debian 3
osv 2
prion 1
ubuntucve 1
nvd 1
nessus
nessus
Fedora 20 : websvn-2.3.3-8.fc20 (2015-1439)
2015-02-09 00:00:00
FreeBSD : websvn -- information disclosure (f69e1f09-e39b-11e5-9f77-5453ed2e2b49)
2016-03-07 00:00:00
Debian DLA-136-1 : websvn security update
2015-03-26 00:00:00
openvas
openvas
Fedora Update for websvn FEDORA-2015-1465
2015-02-09 00:00:00
Fedora Update for websvn FEDORA-2015-1439
2015-02-09 00:00:00
Debian: Security Advisory (DSA-3137-1)
2015-01-23 00:00:00
cve
cve
CVE-2013-6892
2015-01-21 18:59:00
fedora
fedora
[SECURITY] Fedora 20 Update: websvn-2.3.3-8.fc20
2015-02-08 08:59:42
[SECURITY] Fedora 21 Update: websvn-2.3.3-8.fc21
2015-02-08 08:57:41
cvelist
cvelist
CVE-2013-6892
2015-01-21 18:00:00
debian
debian
[SECURITY] [DSA 3137-1] websvn security update
2015-01-24 19:17:12
[SECURITY] [DSA 3137-1] websvn security update
2015-01-24 19:17:12
[SECURITY] [DLA 136-1] websvn security update
2015-01-24 19:18:22
osv
osv
websvn - security update
2015-01-24 00:00:00
websvn - security update
2015-01-24 00:00:00
prion
prion
Code injection
2015-01-21 18:59:00
ubuntucve
ubuntucve
CVE-2013-6892
2015-01-21 00:00:00
nvd
nvd
CVE-2013-6892
2015-01-21 18:59:00

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

54.7%

JSON
Related for F69E1F09-E39B-11E5-9F77-5453ED2E2B49
nessus5openvas5cve1fedora2cvelist1debian3osv2prion1ubuntucve1nvd1