Apache subversion
This hub aggregates every CVE we track for Apache subversion, a product in the devtools ci space. Use it to gauge the current risk picture and drill into individual advisories.
DevTools & CIdev tool
8
CVEs tracked
1
Critical
4
High
0
In CISA KEV
Severity distribution
HIGH4MEDIUM2LOW1CRITICAL1
Monthly trend
0
0
0
1
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 8 most recently published vulnerabilities affecting Apache subversion.
- CVE-2024-46901Apache Subversion: mod_dav_svn denial-of-service via control characters in paths3.1
- CVE-2024-45720Apache Subversion: Command line argument injection on Windows platforms8.2
- CVE-2022-24070Apache Subversion mod_dav_svn is vulnerable to memory corruption7.5
- CVE-2021-28544Apache Subversion SVN authz protected copyfrom paths regression4.3
- CVE-2020-17525Remote unauthenticated denial-of-service in Subversion mod_authz_svn7.5
- CVE-2018-11803Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash after dereferencing an uninitialized pointer if the client omits the root path in a recursive directory ...7.5
- CVE-2016-8734Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The...6.5
- CVE-2017-9800A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3 to run an arbitrary shell command. Such a URL could be ...9.8
Product normalization is registry-driven with AI assist and human review. How it works