CVE-2018-7688

Опубликовано: 07 июн. 2018

Источник: nvd

CVSS3: 7.1

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opensuse:open_build_service:*:*:*:*:*:*:*:*

Версия до 2.9.3 (исключая)

EPSS

Процентиль: 38%

0.00165

Низкий

7.1 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

CVE-2018-7688

CVSS3: 7.1

ubuntu

больше 7 лет назад

A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions.

CVE-2018-7688

CVSS3: 7.1

debian

больше 7 лет назад

A missing permission check in the review handling of openSUSE Open Bui ...

GHSA-9fp2-98jv-g7j6

CVSS3: 6.5

github

больше 3 лет назад

A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions.

EPSS

Процентиль: 38%

0.00165

Низкий

7.1 High

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862