CVE-2019-0203

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Subversion
Vendor: CVE Published:; 26 September 2019

Summary

In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a client sends certain sequences of protocol commands. This can lead to disruption for users of the server.

Affected Version(s)

Apache Subversion Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0

References

http://subversion.apache.org/security/CVE-2019-0203-advis...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 26, 2019
Vulnerability Reserved
Nov 14, 2018