Candlepinproject Candlepin
By the Year
In 2024 there have been 0 vulnerabilities in Candlepinproject Candlepin . Last year Candlepin had 1 security vulnerability published. Right now, Candlepin is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 8.10 |
| 2022 | 1 | 5.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Candlepin vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Candlepinproject Candlepin Security Vulnerabilities
An improper access control flaw was found in Candlepin
CVE-2023-1832
8.1 - High
- October 04, 2023
An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant, which can result in loss of confidentiality and availability for the affected customer/tenant.
AuthZ
The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw
CVE-2021-4142
5.5 - Medium
- August 24, 2022
The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.
authentification
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Candlepinproject Candlepin or by Candlepinproject? Click the Watch button to subscribe.
