Christian Bruckmayer

2 exploits Active since Jun 2018
CVE-2018-7688 WRITEUP HIGH WRITEUP
Opensuse Open Build Service < 2.9.3 - Missing Authorization
A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions.
CVSS 7.1
CVE-2018-7689 WRITEUP HIGH WRITEUP
Opensuse Open Build Service < 2.9.3 - Missing Authorization
Lack of permission checks in the InitializeDevelPackage function in openSUSE Open Build Service before 2.9.3 allowed authenticated users to modify packages where they do not have write permissions.
CVSS 7.1