CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-7393

The daemonize.py module in Subversion 1.8.0 before 1.8.2 allows local users to gain privileges via a symlink attack on the pid file created for (1) svnwcsub.py or (2) irkerbridge.py when the --pidfile option is used. NOTE: this issue was SPLIT from CVE-2013-4262 based on different affected versions (ADT3).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.1%

CVSS Severity

CVSS v2 Score 2.4

References

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
https://subversion.apache.org/security/CVE-2013-4262-advisory.txt
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
https://subversion.apache.org/security/CVE-2013-4262-advisory.txt

Products affected by CVE-2013-7393

Apache » Subversion » Version: 1.8.0

cpe:2.3:a:apache:subversion:1.8.0
Apache » Subversion » Version: 1.8.1

cpe:2.3:a:apache:subversion:1.8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-7393

Products

Pricing

Contact Us