Lucene search

[email protected]CVE-2011-0466

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-0466

2022-10-0316:15:19

CWE-264

[email protected]

web.nvd.nist.gov

cwe-284

api security

suse

opensuse

build service

obs

cve-2011-0466

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

39.3%

JSON

The API in SUSE openSUSE Build Service (OBS) 2.0.x before 2.0.8 and 2.1.x before 2.1.6 allows attackers to bypass intended write-access restrictions and modify a (1) package or (2) project via unspecified vectors.

Affected configurations

NVD

Node

novellopensuse_build_serviceMatch2.0

novellopensuse_build_serviceMatch2.0.0

novellopensuse_build_serviceMatch2.0.1

novellopensuse_build_serviceMatch2.0.2

novellopensuse_build_serviceMatch2.0.3

novellopensuse_build_serviceMatch2.0.4

novellopensuse_build_serviceMatch2.0.5

novellopensuse_build_serviceMatch2.0.6

novellopensuse_build_serviceMatch2.0.7

novellopensuse_build_serviceMatch2.0.16

novellopensuse_build_serviceMatch2.0.103

novellopensuse_build_serviceMatch2.0.104

novellopensuse_build_serviceMatch2.0.106

Node

novellopensuse_build_serviceMatch2.1

novellopensuse_build_serviceMatch2.1.0

novellopensuse_build_serviceMatch2.1.1

novellopensuse_build_serviceMatch2.1.2

novellopensuse_build_serviceMatch2.1.3

novellopensuse_build_serviceMatch2.1.4

novellopensuse_build_serviceMatch2.1.5

novellopensuse_build_serviceMatch2.1.5.1

CPENameOperatorVersion
novell:opensuse_build_servicenovell opensuse build serviceeq2.0
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.0
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.1
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.2
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.3
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.4
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.5
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.6
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.7
novell:opensuse_build_servicenovell opensuse build serviceeq2.0.16

CPE	Name	Operator	Version
novell:opensuse_build_service	novell opensuse build service	eq	2.0
novell:opensuse_build_service	novell opensuse build service	eq	2.0.0
novell:opensuse_build_service	novell opensuse build service	eq	2.0.1
novell:opensuse_build_service	novell opensuse build service	eq	2.0.2
novell:opensuse_build_service	novell opensuse build service	eq	2.0.3
novell:opensuse_build_service	novell opensuse build service	eq	2.0.4
novell:opensuse_build_service	novell opensuse build service	eq	2.0.5
novell:opensuse_build_service	novell opensuse build service	eq	2.0.6
novell:opensuse_build_service	novell opensuse build service	eq	2.0.7
novell:opensuse_build_service	novell opensuse build service	eq	2.0.16

Rows per page:

1-10 of 131

References

news.opensuse.org/2011/03/02/build-service-team-releases-new-versions-fixing-security-problems/

6.7 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

39.3%

JSON

Related for CVE-2011-0466

nvd1 cvelist1 prion1