CVE-2013-4277

low

Apache

CVSS v3 Base Score

3.3

AV:L/AC:M/Au:N/C:N/I:P/A:P

EPSS Score

0.2%

Exploitation probability in 30 days

Top 57% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Confidentiality

None

Integrity

Availability

Published: September 16, 2013 (4623 days ago)

Last Modified: April 29, 2026

Vendor: Apache

Source: NVD

Description

Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option.

CWE

CWE-264

Affected Products

apache subversion

References

🔗 lists.opensuse.org 🔗 lists.opensuse.org 🔗 subversion.apache.org 🔗 www.securityfocus.com 🔗 exchange.xforce.ibmcloud.com

CVE-2013-4277

Vulnerability Report

Description

CWE

Affected Products

References