Candlepinproject Candlepin 0.5.30-1

CPE Details

Candlepinproject Candlepin 0.5.30-1
0.5.30-1
2023-10-06
14h28 +00:00
2023-10-06
14h28 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:candlepinproject:candlepin:0.5.30-1:*:*:*:*:*:*:*

Informations

Vendor

candlepinproject

Product

candlepin

Version

0.5.30-1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-1832 2023-10-04 13h05 +00:00 An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant, which can result in loss of confidentiality and availability for the affected customer/tenant.
8.1
High
CVE-2012-6119 2013-04-02 22h00 +00:00 Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not properly check manifest signatures, which allows local users to modify manifests.
2.1