Описание
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.8.13-1ubuntu2 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.8.8-1ubuntu3.2]] |
| precise | not-affected | 1.6.17dfsg-3ubuntu3.4 |
| trusty | released | 1.8.8-1ubuntu3.2 |
| trusty/esm | DNE | trusty was released [1.8.8-1ubuntu3.2] |
| upstream | needs-triage | |
| vivid | released | 1.8.10-5ubuntu1.1 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x befor ...
mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.
EPSS
5 Medium
CVSS2