CVE-2012-3356

NONE EPSS 78.6%
Published Jul 22, 201213y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jul 22, 2012 13y ago
Last Modified Jun 16, 2026 2w ago

Description

The remote SVN views functionality (lib/vclib/svn/svn_ra.py) in ViewVC before 1.1.15 does not properly perform authorization, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

Threat Intelligence

EPSS Exploit Probability
78.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-287 Improper Authentication Authentication

Affected Products 33

VendorProductVersionRange
viewvcviewvc* ≤1.1.14
viewvcviewvc0.8any
viewvcviewvc0.9any
viewvcviewvc0.9.1any
viewvcviewvc0.9.2any
viewvcviewvc0.9.3any
viewvcviewvc0.9.4any
viewvcviewvc1.0.0any
viewvcviewvc1.0.1any
viewvcviewvc1.0.2any
viewvcviewvc1.0.3any
viewvcviewvc1.0.4any
viewvcviewvc1.0.5any
viewvcviewvc1.0.6any
viewvcviewvc1.0.7any
viewvcviewvc1.0.8any
viewvcviewvc1.0.9any
viewvcviewvc1.0.10any
viewvcviewvc1.0.11any
viewvcviewvc1.1.0any
viewvcviewvc1.1.1any
viewvcviewvc1.1.2any
viewvcviewvc1.1.3any
viewvcviewvc1.1.4any
viewvcviewvc1.1.5any
viewvcviewvc1.1.6any
viewvcviewvc1.1.7any
viewvcviewvc1.1.8any
viewvcviewvc1.1.9any
viewvcviewvc1.1.10any
viewvcviewvc1.1.11any
viewvcviewvc1.1.12any
viewvcviewvc1.1.13any

References 15

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.