CVE-2007-2448

NONE EPSS 71.6%
Published Jun 14, 200719y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jun 14, 2007 19y ago
Last Modified Jun 16, 2026 2w ago

Description

Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obtain sensitive information (revision properties) via svn (1) propget, (2) proplist, or (3) propedit.

Threat Intelligence

EPSS Exploit Probability
71.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 1

VendorProductVersionRange
subversionsubversion* ≤1.4.3

References 9

Remediation