Authorization Bypass Vulnerability in ViewVC by Tigris.org
CVE-2012-3356

Currently unrated

Key Information:

Vendor

Viewvc

Status
Viewvc
Vendor
CVE Published:
22 July 2012

What is CVE-2012-3356?

In ViewVC versions prior to 1.1.15, a security flaw in the remote SVN views functionality allows attackers to bypass intended access restrictions. This vulnerability arises from improper authorization checks in the lib/vclib/svn/svn_ra.py file, leading to the potential exposure of sensitive data through unspecified vectors. Attackers exploiting this vulnerability can gain unauthorized access, making it critical for users to upgrade to the latest version to mitigate risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.openwall.com/lists/oss-security/2012/06/25/8
mailing-listx_refsource_MLIST
http://viewvc.tigris.org/source/browse/viewvc?view=rev&re...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/54197
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.