A missing permission check in the review handling of openSUSE Open Build Service prior to 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse open build service |