Collabnet

collabnet

5 CVEs • 2 products

Products (2)

Click to collapse

Toggle

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-2112 4Apache CanonicalCollabnet+1 more 4Opensuse SubversionSubversion+1 more Apr 29, 2026 Jul 31, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection.
CVE-2013-2088 3Apache CollabnetOpensuse 3Opensuse SubversionSubversion Apr 29, 2026 Jul 31, 2013 N/A· v4 N/A· v3 7.1 HIGH· v2 contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.
CVE-2013-1968 4Apache CanonicalCollabnet+1 more 4Opensuse SubversionSubversion+1 more Apr 29, 2026 Jul 31, 2013 N/A· v4 N/A· v3 5.5 MEDIUM· v2 Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name.
CVE-2012-2603 1Collabnet 1Scrumworks Apr 29, 2026 Jun 8, 2012 N/A· v4 N/A· v3 6.5 MEDIUM· v2 The server in CollabNet ScrumWorks Pro before 6.0 allows remote authenticated users to gain privileges and obtain sensitive information via a modified desktop client.
CVE-2011-0410 1Collabnet 1Scrumworks Apr 29, 2026 Jan 24, 2011 N/A· v4 N/A· v3 5.0 MEDIUM· v2 CollabNet ScrumWorks Basic 1.8.4 uses cleartext credentials for network communication and the internal database, which makes it easier for context-dependent attackers to obtain sensitive information by (1) sniffing the n...Show more CollabNet ScrumWorks Basic 1.8.4 uses cleartext credentials for network communication and the internal database, which makes it easier for context-dependent attackers to obtain sensitive information by (1) sniffing the network for transmissions of Java objects or (2) reading the database.Show less