RSS   Vulnerabilities for 'Candlepin'   RSS

2017-07-25
 
CVE-2015-5187

 

 
Candlepin allows remote attackers to obtain sensitive information by obtaining Java exception statements as a result of excessive web traffic.

 
2013-04-02
 
CVE-2012-6119

CWE-264
 

 
Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not properly check manifest signatures, which allows local users to modify manifests.

 

 >>> Vendor: Candlepinproject 2 Products
Subscription manager
Candlepin


Copyright 2024, cxsecurity.com

 

Back to Top