CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0749

The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.0%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2004-0749

Subversion » Subversion » Version: 1.0

cpe:2.3:a:subversion:subversion:1.0
Subversion » Subversion » Version: 1.0.1

cpe:2.3:a:subversion:subversion:1.0.1
Subversion » Subversion » Version: 1.0.2

cpe:2.3:a:subversion:subversion:1.0.2
Subversion » Subversion » Version: 1.0.3

cpe:2.3:a:subversion:subversion:1.0.3
Subversion » Subversion » Version: 1.0.4

cpe:2.3:a:subversion:subversion:1.0.4
Subversion » Subversion » Version: 1.0.5

cpe:2.3:a:subversion:subversion:1.0.5
Subversion » Subversion » Version: 1.0.6

cpe:2.3:a:subversion:subversion:1.0.6
Subversion » Subversion » Version: 1.0.7

cpe:2.3:a:subversion:subversion:1.0.7
Subversion » Subversion » Version: 1.1.0_rc1

cpe:2.3:a:subversion:subversion:1.1.0_rc1
Subversion » Subversion » Version: 1.1.0_rc2

cpe:2.3:a:subversion:subversion:1.1.0_rc2
Subversion » Subversion » Version: 1.1.0_rc3

cpe:2.3:a:subversion:subversion:1.1.0_rc3
Gentoo » Linux » Version: 0.5

cpe:2.3:o:gentoo:linux:0.5
Gentoo » Linux » Version: 0.7

cpe:2.3:o:gentoo:linux:0.7
Gentoo » Linux » Version: 1.1a

cpe:2.3:o:gentoo:linux:1.1a
Gentoo » Linux » Version: 1.2

cpe:2.3:o:gentoo:linux:1.2
Gentoo » Linux » Version: 1.4

cpe:2.3:o:gentoo:linux:1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0749

Products

Pricing

Contact Us