Improper input validation in Opensuse Open_build_service
CVE-2011-4181
A vulnerability in open build service allows remote attackers to gain access to source files even though source access is disabled. Affected releases are SUSE open build service up to and including version 2.1.15 (for 2.1) and before versi…
EPSS: 0.014 (69.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.
Affected products
- Opensuse Open_build_service
- Suse Open Build Service — versions unspecified
Weakness classification (CWE)
References
- security@opentext.com (x_refsource_CONFIRM)
- security@opentext.com (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2011-4181?
- CVE-2011-4181 is a high-severity vulnerability in Opensuse Open_build_service, classified under Improper Access Control. CVSS score: 7.5/10. Published 2018-06-11.
- How severe is CVE-2011-4181?
- High severity. CVSS v3 base score is 7.5 out of 10.