CVE Vulnerabilities

CVE-2011-0466

Published: Apr 10, 2011 | Modified: Apr 21, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The API in SUSE openSUSE Build Service (OBS) 2.0.x before 2.0.8 and 2.1.x before 2.1.6 allows attackers to bypass intended write-access restrictions and modify a (1) package or (2) project via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Opensuse_build_service Novell 2.0 (including) 2.0 (including)
Opensuse_build_service Novell 2.0.0 (including) 2.0.0 (including)
Opensuse_build_service Novell 2.0.1 (including) 2.0.1 (including)
Opensuse_build_service Novell 2.0.2 (including) 2.0.2 (including)
Opensuse_build_service Novell 2.0.3 (including) 2.0.3 (including)
Opensuse_build_service Novell 2.0.4 (including) 2.0.4 (including)
Opensuse_build_service Novell 2.0.5 (including) 2.0.5 (including)
Opensuse_build_service Novell 2.0.6 (including) 2.0.6 (including)
Opensuse_build_service Novell 2.0.7 (including) 2.0.7 (including)
Opensuse_build_service Novell 2.0.16 (including) 2.0.16 (including)
Opensuse_build_service Novell 2.0.103 (including) 2.0.103 (including)
Opensuse_build_service Novell 2.0.104 (including) 2.0.104 (including)
Opensuse_build_service Novell 2.0.106 (including) 2.0.106 (including)

References