Open Build Service Security Vulnerabilities and Issues — Open Build Service CVE List

Lucene search

OpensuseOpen Build Service

3 matches found

CVE•added 2018/10/02 3:29 p.m.•104 views

CVE-2018-12473

A path traversal traversal vulnerability in obs-service-tar_scm of Open Build Service allows remote attackers to cause access files not in the current build. On the server itself this is prevented by confining the worker via KVM. Affected releases are openSUSE Open Build Service: versions prior to ...

7.5CVSS5.6AI score0.00302EPSS

CVE•added 2018/10/09 1:29 p.m.•40 views

CVE-2018-12478

A Improper Input Validation vulnerability in Open Build Service allows remote attackers to extract files from the system where the service runs. Affected releases are openSUSE Open Build Service: status of is unknown.

6.5CVSS5.8AI score0.00295EPSS

CVE•added 2018/10/09 1:29 p.m.•37 views

CVE-2018-12479

A Improper Input Validation vulnerability in Open Build Service allows remote attackers to cause DoS by specifying crafted request IDs. Affected releases are openSUSE Open Build Service: versions prior to 01b015ca2a320afc4fae823465d1e72da8bd60df.

7.5CVSS6.9AI score0.00485EPSS