Candlepinproject : Security Vulnerabilities, CVEs, CVSS score >= 8
An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant, which can result in loss of confidentiality and availability for the affected customer/tenant.
Max CVSS
8.1
EPSS Score
0.05%
Published
2023-10-04
Updated
2023-10-06
1 vulnerabilities found