VYPR
Unrated severityNVD Advisory· Published Dec 9, 2024· Updated Apr 13, 2025

Apache Subversion: mod_dav_svn denial-of-service via control characters in paths

CVE-2024-46901

Description

Insufficient validation of filenames against control characters in Apache Subversion repositories served via mod_dav_svn allows authenticated users with commit access to commit a corrupted revision, leading to disruption for users of the repository.

All versions of Subversion up to and including Subversion 1.14.4 are affected if serving repositories via mod_dav_svn. Users are recommended to upgrade to version 1.14.5, which fixes this issue.

Repositories served via other access methods are not affected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.