Improper input validation in Opensuse Open_build_service

CVE-2011-4181

A vulnerability in open build service allows remote attackers to gain access to source files even though source access is disabled. Affected releases are SUSE open build service up to and including version 2.1.15 (for 2.1) and before versi…

EPSS: 0.014 (69.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2011-4181?
CVE-2011-4181 is a high-severity vulnerability in Opensuse Open_build_service, classified under Improper Access Control. CVSS score: 7.5/10. Published 2018-06-11.
How severe is CVE-2011-4181?
High severity. CVSS v3 base score is 7.5 out of 10.