Lucene search

K
cve[email protected]CVE-2011-0466
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-0466

2022-10-0316:15:19
CWE-264
web.nvd.nist.gov
21
cwe-284
api security
suse
opensuse
build service
obs
cve-2011-0466

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

39.3%

The API in SUSE openSUSE Build Service (OBS) 2.0.x before 2.0.8 and 2.1.x before 2.1.6 allows attackers to bypass intended write-access restrictions and modify a (1) package or (2) project via unspecified vectors.

Affected configurations

NVD
Node
novellopensuse_build_serviceMatch2.0
OR
novellopensuse_build_serviceMatch2.0.0
OR
novellopensuse_build_serviceMatch2.0.1
OR
novellopensuse_build_serviceMatch2.0.2
OR
novellopensuse_build_serviceMatch2.0.3
OR
novellopensuse_build_serviceMatch2.0.4
OR
novellopensuse_build_serviceMatch2.0.5
OR
novellopensuse_build_serviceMatch2.0.6
OR
novellopensuse_build_serviceMatch2.0.7
OR
novellopensuse_build_serviceMatch2.0.16
OR
novellopensuse_build_serviceMatch2.0.103
OR
novellopensuse_build_serviceMatch2.0.104
OR
novellopensuse_build_serviceMatch2.0.106
Node
novellopensuse_build_serviceMatch2.1
OR
novellopensuse_build_serviceMatch2.1.0
OR
novellopensuse_build_serviceMatch2.1.1
OR
novellopensuse_build_serviceMatch2.1.2
OR
novellopensuse_build_serviceMatch2.1.3
OR
novellopensuse_build_serviceMatch2.1.4
OR
novellopensuse_build_serviceMatch2.1.5
OR
novellopensuse_build_serviceMatch2.1.5.1

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

39.3%

Related for CVE-2011-0466