CVE-2016-6312 in Subversionthông tin

Tóm tắt

Bởi MITRE

The mod_dontdothat component of the mod_dav_svn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav repository to cause a denial of service (memory consumption and httpd crash). NOTE: Exists as a regression to CVE-2009-1955.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Đặt trước

26/07/2016

Tiết lộ

17/07/2017

Kiểm duyệt

được chấp nhận

mục

VDB-103563

CPE

sẵn sàng

CWE

CWE-400 (Đã xác nhận)

CVSS

6.5 (NVD)

EPSS

0.00515

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6312
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6312
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6312/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!