Maks Polunin

**Name of the Vulnerable Software and Affected Versions** CVS versions 1.12 and earlier **Description** The issue allows remote attackers to bypass authentication via the pserver access method when using the repouid patch on Debian GNU/Linux. **Recommendations** For CVS versions 1.12 and earlier, consider disabling the pserver access method until a patch is available. Restrict access to the repouid patch to minimize the risk of exploitation.