Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-0466
cwe-284
api security
suse
opensuse
build service
obs
cve-2011-0466
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
39.6%
The API in SUSE openSUSE Build Service (OBS) 2.0.x before 2.0.8 and 2.1.x before 2.1.6 allows attackers to bypass intended write-access restrictions and modify a (1) package or (2) project via unspecified vectors.
Affected configurations
Node
novellopensuse_build_serviceMatch2.0
ORnovellopensuse_build_serviceMatch2.0.0
ORnovellopensuse_build_serviceMatch2.0.1
ORnovellopensuse_build_serviceMatch2.0.2
ORnovellopensuse_build_serviceMatch2.0.3
ORnovellopensuse_build_serviceMatch2.0.4
ORnovellopensuse_build_serviceMatch2.0.5
ORnovellopensuse_build_serviceMatch2.0.6
ORnovellopensuse_build_serviceMatch2.0.7
ORnovellopensuse_build_serviceMatch2.0.16
ORnovellopensuse_build_serviceMatch2.0.103
ORnovellopensuse_build_serviceMatch2.0.104
ORnovellopensuse_build_serviceMatch2.0.106
Node
novellopensuse_build_serviceMatch2.1
ORnovellopensuse_build_serviceMatch2.1.0
ORnovellopensuse_build_serviceMatch2.1.1
ORnovellopensuse_build_serviceMatch2.1.2
ORnovellopensuse_build_serviceMatch2.1.3
ORnovellopensuse_build_serviceMatch2.1.4
ORnovellopensuse_build_serviceMatch2.1.5
ORnovellopensuse_build_serviceMatch2.1.5.1
Related
cvelist
cvelist
CVE-2011-0466
2022-10-03 16:15:19
nvd
nvd
CVE-2011-0466
2011-04-10 02:51:19
prion
prion
Design/Logic Flaw
2011-04-10 02:51:00
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
39.6%
Related for CVE-2011-0466