Known Vulnerabilities for Cvs by Cvs

Listed below are 10 of the newest known vulnerabilities associated with "Cvs" by "Cvs".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2012-0804 Heap-based buffer overflow in the proxy_connect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy server... 10 - HIGH 2012-05-29 2023-02-13
CVE-2005-2693 cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files a... 4.6 - MEDIUM 2005-08-26 2017-10-11
CVE-2005-0753 Buffer overflow in CVS before 1.11.20 allows remote attackers to execute arbitrary code. 7.5 - HIGH 2005-04-18 2017-10-11
CVE-2004-0418 serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may a... 10 - HIGH 2004-08-06 2018-05-03
CVE-2004-0417 Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x throug... 5 - MEDIUM 2004-08-06 2018-05-03
CVE-2004-0416 Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow ... 10 - HIGH 2004-08-06 2018-05-03
CVE-2004-0414 CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NUL... 10 - HIGH 2004-08-06 2018-05-03
CVE-2004-0405 CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a... 5 - MEDIUM 2004-06-01 2017-10-11
CVE-2004-0396 Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remo... 7.5 - HIGH 2004-06-14 2017-10-11
CVE-2004-0180 The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files th... 2.6 - LOW 2004-06-01 2018-05-03
Results limited to 10 most recent vulnerabilities
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report