Candlepinproject Candlepin
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Candlepinproject Candlepin.
By the Year
In 2026 there have been 0 vulnerabilities in Candlepinproject Candlepin. Candlepin did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 8.10 |
| 2022 | 1 | 5.50 |
It may take a day or so for new Candlepin vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Candlepinproject Candlepin Security Vulnerabilities
Candlepin Improper Access Control (CVE-2023-1832)
CVE-2023-1832
8.1 - High
- October 04, 2023
An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant, which can result in loss of confidentiality and availability for the affected customer/tenant.
AuthZ
Red Hat Satellite Candlepin Auth Bypass via SCA Cert
CVE-2021-4142
5.5 - Medium
- August 24, 2022
The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.
authentification
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Candlepinproject Candlepin or by Candlepinproject? Click the Watch button to subscribe.
