CPE-5C5E1BF5-084E-4DFD-A900-5FB38845D8D3 Detail

CPE Details

Apache Software Foundation Subversion 1.9.6

Vendor

apache

Product

subversion

Version

1.9.6

Created

2017-09-24
10h57 +00:00

Modified

2017-09-24
10h57 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:apache:subversion:1.9.6:::::::*

Informations

Vendor

apache

Product

subversion

Version

1.9.6

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2024-45720	2024-10-09 12h38 +00:00	On Windows platforms, a "best fit" character encoding conversion of command line arguments to Subversion's executables (e.g., svn.exe, etc.) may lead to unexpected command line argument interpretation, including argument injection and execution of other programs, if a specially crafted command line argument string is processed. All versions of Subversion up to and including Subversion 1.14.3 are affected on Windows platforms only. Users are recommended to upgrade to version Subversion 1.14.4, which fixes this issue. Subversion is not affected on UNIX-like platforms.	8.2	High
CVE-2020-17525	2021-03-17 09h20 +00:00	Subversion's mod_authz_svn module will crash if the server is using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option and a client sends a request for a non-existing repository URL. This can lead to disruption for users of the service. This issue was fixed in mod_dav_svn+mod_authz_svn servers 1.14.1 and mod_dav_svn+mod_authz_svn servers 1.10.7	7.5	High
CVE-2019-0203	2019-09-26 13h59 +00:00	In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a client sends certain sequences of protocol commands. This can lead to disruption for users of the server.	7.5	High
CVE-2018-11782	2019-09-26 13h55 +00:00	In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a well-formed read-only request produces a particular answer. This can lead to disruption for users of the server.	6.5	Medium
CVE-2017-9800	2017-08-11 21h00 +00:00	A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3 to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to a honest server (to attack another user of that server's repositories), or by a proxy server. The vulnerability affects all clients, including those that use file://, http://, and plain (untunneled) svn://.	9.8	Critical
CVE-2004-0179	2004-04-16 02h00 +00:00	Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.	6.8

Apache Software Foundation Subversion 1.9.6

CPE Details

CPE Name: cpe:2.3:a:apache:subversion:1.9.6:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:apache:subversion:1.9.6:::::::*