CVE-2023-1832

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-1832
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1832.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-1832
Published
2023-10-04T14:15:10Z
Modified
2024-09-03T04:21:34.096626Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
[none]
Details

An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant, which can result in loss of confidentiality and availability for the affected customer/tenant.

References

Affected packages

Git / github.com/candlepin/candlepin

Affected ranges

Type
GIT
Repo
https://github.com/candlepin/candlepin
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

candlepin-0.*

candlepin-0.0.1-1
candlepin-0.0.10-1
candlepin-0.0.11-1
candlepin-0.0.12-1
candlepin-0.0.13-1
candlepin-0.0.14-1
candlepin-0.0.15-1
candlepin-0.0.16-1
candlepin-0.0.17-1
candlepin-0.0.18-1
candlepin-0.0.2-1
candlepin-0.0.21-1
candlepin-0.0.22-1
candlepin-0.0.23-1
candlepin-0.0.24-1
candlepin-0.0.25-1
candlepin-0.0.26-1
candlepin-0.0.27-1
candlepin-0.0.28-1
candlepin-0.0.29-1
candlepin-0.0.3-1
candlepin-0.0.30-1
candlepin-0.0.31-1
candlepin-0.0.32-1
candlepin-0.0.33-1
candlepin-0.0.34-1
candlepin-0.0.35-1
candlepin-0.0.36-1
candlepin-0.0.37-1
candlepin-0.0.38-1
candlepin-0.0.39-1
candlepin-0.0.4-1
candlepin-0.0.40-1
candlepin-0.0.41-1
candlepin-0.0.5-1
candlepin-0.0.6-1
candlepin-0.0.7-1
candlepin-0.0.8-1
candlepin-0.0.9-1
candlepin-0.1.1-1
candlepin-0.1.10-1
candlepin-0.1.11-1
candlepin-0.1.12-1
candlepin-0.1.13-1
candlepin-0.1.14-1
candlepin-0.1.15-1
candlepin-0.1.16-1
candlepin-0.1.17-1
candlepin-0.1.18-1
candlepin-0.1.19-1
candlepin-0.1.2-1
candlepin-0.1.20-1
candlepin-0.1.21-1
candlepin-0.1.22-1
candlepin-0.1.23-1
candlepin-0.1.24-1
candlepin-0.1.25-1
candlepin-0.1.26-1
candlepin-0.1.27-1
candlepin-0.1.28-1
candlepin-0.1.3-1
candlepin-0.1.4-1
candlepin-0.1.5-1
candlepin-0.1.6-1
candlepin-0.1.7-1
candlepin-0.1.8-1
candlepin-0.1.9-1
candlepin-0.2.1-1
candlepin-0.2.10-1
candlepin-0.2.11-1
candlepin-0.2.2-1
candlepin-0.2.3-1
candlepin-0.2.4-1
candlepin-0.2.5-1
candlepin-0.2.6-1
candlepin-0.2.7-1
candlepin-0.2.8-1
candlepin-0.2.9-1
candlepin-0.3.1-1
candlepin-0.3.2-1
candlepin-0.3.3-1
candlepin-0.3.4-1
candlepin-0.3.5-1
candlepin-0.3.6-1
candlepin-0.3.7-1
candlepin-0.4.1-1
candlepin-0.4.10-1
candlepin-0.4.11-1
candlepin-0.4.12-1
candlepin-0.4.13-1
candlepin-0.4.14-1
candlepin-0.4.15-1
candlepin-0.4.16-1
candlepin-0.4.17-1
candlepin-0.4.18-1
candlepin-0.4.19-1
candlepin-0.4.2-1
candlepin-0.4.20-1
candlepin-0.4.21-1
candlepin-0.4.22-1
candlepin-0.4.23-1
candlepin-0.4.3-1
candlepin-0.4.4-1
candlepin-0.4.5-1
candlepin-0.4.6-1
candlepin-0.4.7-1
candlepin-0.4.8-1
candlepin-0.4.9-1
candlepin-0.5.1-1
candlepin-0.5.10-1
candlepin-0.5.11-1
candlepin-0.5.12-1
candlepin-0.5.13-1
candlepin-0.5.14-1
candlepin-0.5.15-1
candlepin-0.5.16-1
candlepin-0.5.17-1
candlepin-0.5.18-1
candlepin-0.5.19-1
candlepin-0.5.2-1
candlepin-0.5.20-1
candlepin-0.5.21-1
candlepin-0.5.22-1
candlepin-0.5.23-1
candlepin-0.5.24-1
candlepin-0.5.25-1
candlepin-0.5.26-1
candlepin-0.5.27-1
candlepin-0.5.28-1
candlepin-0.5.29-1
candlepin-0.5.3-1
candlepin-0.5.30-1
candlepin-0.5.31-1
candlepin-0.5.32-1
candlepin-0.5.4-1
candlepin-0.5.5-1
candlepin-0.5.6-1
candlepin-0.5.7-1
candlepin-0.5.8-1
candlepin-0.5.9-1
candlepin-0.6.1-1
candlepin-0.6.2-1
candlepin-0.6.3-1
candlepin-0.6.4-1
candlepin-0.6.5-1
candlepin-0.7.1-1
candlepin-0.7.10-1
candlepin-0.7.11-1
candlepin-0.7.12-1
candlepin-0.7.13-1
candlepin-0.7.14-1
candlepin-0.7.15-1
candlepin-0.7.16-1
candlepin-0.7.17-1
candlepin-0.7.18-1
candlepin-0.7.19-1
candlepin-0.7.2-1
candlepin-0.7.21-1
candlepin-0.7.22-1
candlepin-0.7.23-1
candlepin-0.7.24-1
candlepin-0.7.25-1
candlepin-0.7.26-1
candlepin-0.7.27-1
candlepin-0.7.28-1
candlepin-0.7.29-1
candlepin-0.7.3-1
candlepin-0.7.4-1
candlepin-0.7.5-1
candlepin-0.7.6-1
candlepin-0.7.7-1
candlepin-0.7.8-1
candlepin-0.7.9-1
candlepin-0.8.0-1
candlepin-0.8.1-1
candlepin-0.8.10-1
candlepin-0.8.11-1
candlepin-0.8.12-1
candlepin-0.8.13-1
candlepin-0.8.14-1
candlepin-0.8.15-1
candlepin-0.8.16-1
candlepin-0.8.17-1
candlepin-0.8.18-1
candlepin-0.8.19-1
candlepin-0.8.2-1
candlepin-0.8.20-1
candlepin-0.8.21-1
candlepin-0.8.22-1
candlepin-0.8.23-1
candlepin-0.8.24-1
candlepin-0.8.25-1
candlepin-0.8.26-1
candlepin-0.8.27-1
candlepin-0.8.28-1
candlepin-0.8.29-1
candlepin-0.8.3-1
candlepin-0.8.30-1
candlepin-0.8.31-1
candlepin-0.8.32-1
candlepin-0.8.33-1
candlepin-0.8.34-1
candlepin-0.8.4-1
candlepin-0.8.5-1
candlepin-0.8.6-1
candlepin-0.8.7-1
candlepin-0.8.8-1
candlepin-0.8.9-1
candlepin-0.9.1-1
candlepin-0.9.10-1
candlepin-0.9.11-1
candlepin-0.9.12-1
candlepin-0.9.13-1
candlepin-0.9.14-1
candlepin-0.9.15-1
candlepin-0.9.16-1
candlepin-0.9.17-1
candlepin-0.9.18-1
candlepin-0.9.19-1
candlepin-0.9.2-1
candlepin-0.9.20-1
candlepin-0.9.21-1
candlepin-0.9.22-1
candlepin-0.9.23-1
candlepin-0.9.24-1
candlepin-0.9.25-1
candlepin-0.9.26-1
candlepin-0.9.27-1
candlepin-0.9.28-1
candlepin-0.9.29-1
candlepin-0.9.3-1
candlepin-0.9.30-1
candlepin-0.9.31-1
candlepin-0.9.32-1
candlepin-0.9.33-1
candlepin-0.9.34-1
candlepin-0.9.35-1
candlepin-0.9.36-1
candlepin-0.9.37-1
candlepin-0.9.38-1
candlepin-0.9.39-1
candlepin-0.9.4-1
candlepin-0.9.40-1
candlepin-0.9.41-1
candlepin-0.9.42-1
candlepin-0.9.43-1
candlepin-0.9.44-1
candlepin-0.9.45-1
candlepin-0.9.46-1
candlepin-0.9.47-1
candlepin-0.9.48-1
candlepin-0.9.49-1
candlepin-0.9.5-1
candlepin-0.9.50-1
candlepin-0.9.51-1
candlepin-0.9.6-1
candlepin-0.9.7-1
candlepin-0.9.8-1
candlepin-0.9.9-1

candlepin-2.*

candlepin-2.0.0-1
candlepin-2.0.1-1
candlepin-2.0.10-1
candlepin-2.0.11-1
candlepin-2.0.12-1
candlepin-2.0.13-1
candlepin-2.0.14-1
candlepin-2.0.15-1
candlepin-2.0.16-1
candlepin-2.0.17-1
candlepin-2.0.18-1
candlepin-2.0.19-1
candlepin-2.0.2-1
candlepin-2.0.20-1
candlepin-2.0.21-1
candlepin-2.0.22-1
candlepin-2.0.23-1
candlepin-2.0.24-1
candlepin-2.0.25-1
candlepin-2.0.26-1
candlepin-2.0.27-1
candlepin-2.0.28-1
candlepin-2.0.29-1
candlepin-2.0.3-1
candlepin-2.0.30-1
candlepin-2.0.4-1
candlepin-2.0.5-1
candlepin-2.0.6-1
candlepin-2.0.7-1
candlepin-2.0.8-1
candlepin-2.0.9-1
candlepin-2.1.0-1
candlepin-2.1.1-1
candlepin-2.10.0-1
candlepin-2.11.0-1
candlepin-2.11.1-1
candlepin-2.11.2-1
candlepin-2.12.0-1
candlepin-2.3.0-1
candlepin-2.3.1-1
candlepin-2.3.2-1
candlepin-2.3.3-1
candlepin-2.3.4-1
candlepin-2.3.5-1
candlepin-2.5.0-1
candlepin-2.5.1-1
candlepin-2.5.2-1
candlepin-2.5.3-1
candlepin-2.5.4-1
candlepin-2.5.5-1
candlepin-2.5.6-1
candlepin-2.5.7-1
candlepin-2.6.0-1
candlepin-2.6.1-1
candlepin-2.6.2-1
candlepin-2.6.3-1
candlepin-2.6.4-1
candlepin-2.6.5-1
candlepin-2.6.6-1
candlepin-2.7.0-1
candlepin-2.7.1-1
candlepin-2.7.2-1
candlepin-2.8.0-1
candlepin-2.8.1-1
candlepin-2.9.0-1
candlepin-2.9.1-1
candlepin-2.9.10-1
candlepin-2.9.11-1
candlepin-2.9.12-1
candlepin-2.9.13-1
candlepin-2.9.14-1
candlepin-2.9.15-1
candlepin-2.9.16-1
candlepin-2.9.17-1
candlepin-2.9.2-1
candlepin-2.9.3-1
candlepin-2.9.4-1
candlepin-2.9.5-1
candlepin-2.9.6-1
candlepin-2.9.7-1
candlepin-2.9.8-1
candlepin-2.9.9-1

candlepin-3.*

candlepin-3.0.0-1
candlepin-3.1.0-1
candlepin-3.1.1-1
candlepin-3.1.10-1
candlepin-3.1.11-1
candlepin-3.1.12-1
candlepin-3.1.13-1
candlepin-3.1.14-1
candlepin-3.1.15-1
candlepin-3.1.16-1
candlepin-3.1.17-1
candlepin-3.1.18-1
candlepin-3.1.19-1
candlepin-3.1.2-1
candlepin-3.1.20-1
candlepin-3.1.21-1
candlepin-3.1.3-1
candlepin-3.1.4-1
candlepin-3.1.5-1
candlepin-3.1.6-1
candlepin-3.1.7-1
candlepin-3.1.8-1
candlepin-3.1.9-1
candlepin-3.2.0-1
candlepin-3.2.1-1
candlepin-3.2.10-1
candlepin-3.2.11-1
candlepin-3.2.12-1
candlepin-3.2.13-1
candlepin-3.2.2-1
candlepin-3.2.3-1
candlepin-3.2.4-1
candlepin-3.2.5-1
candlepin-3.2.6-1
candlepin-3.2.7-1
candlepin-3.2.8-1
candlepin-3.2.9-1

candlepin-4.*

candlepin-4.0.0-1
candlepin-4.0.1-1
candlepin-4.1.10-1
candlepin-4.1.11-1
candlepin-4.1.2-1
candlepin-4.1.3-1
candlepin-4.1.4-1
candlepin-4.1.5-1
candlepin-4.1.6-1
candlepin-4.1.7-1
candlepin-4.1.8-1
candlepin-4.1.9-1
candlepin-4.2.0-1
candlepin-4.2.1-1
candlepin-4.2.10-1
candlepin-4.2.11-1
candlepin-4.2.12-1
candlepin-4.2.13-1
candlepin-4.2.14-1
candlepin-4.2.15-1
candlepin-4.2.2-1
candlepin-4.2.3-1
candlepin-4.2.4-1
candlepin-4.2.5-1
candlepin-4.2.6-1
candlepin-4.2.7-1
candlepin-4.2.8-1
candlepin-4.2.9-1
candlepin-4.3.0-1
candlepin-4.3.1-1
candlepin-4.3.2-1
candlepin-4.3.3-1
candlepin-4.3.4-1
candlepin-4.3.5-1
candlepin-4.3.6-1
candlepin-4.3.7-1
candlepin-4.3.7-2

candlepin-common-1.*

candlepin-common-1.0.1-1
candlepin-common-1.0.10-1
candlepin-common-1.0.11-1
candlepin-common-1.0.12-1
candlepin-common-1.0.13-1
candlepin-common-1.0.14-1
candlepin-common-1.0.15-1
candlepin-common-1.0.16-1
candlepin-common-1.0.17-1
candlepin-common-1.0.18-1
candlepin-common-1.0.19-1
candlepin-common-1.0.2-1
candlepin-common-1.0.20-1
candlepin-common-1.0.21-1
candlepin-common-1.0.22-1
candlepin-common-1.0.23-1
candlepin-common-1.0.3-1
candlepin-common-1.0.4-1
candlepin-common-1.0.5-1
candlepin-common-1.0.6-1
candlepin-common-1.0.7-1
candlepin-common-1.0.8-1
candlepin-common-1.0.9-1

candlepin-common-2.*

candlepin-common-2.0.0-1
candlepin-common-2.0.1-1
candlepin-common-2.0.2-1
candlepin-common-2.0.3-1

gutterball-1.*

gutterball-1.0.1-1
gutterball-1.0.10-1
gutterball-1.0.11-1
gutterball-1.0.12-1
gutterball-1.0.13-1
gutterball-1.0.14-1
gutterball-1.0.15-1
gutterball-1.0.16-1
gutterball-1.0.2-1
gutterball-1.0.3-1
gutterball-1.0.4-1
gutterball-1.0.5-1
gutterball-1.0.6-1
gutterball-1.0.7-1
gutterball-1.0.8-1
gutterball-1.0.9-1

gutterball-2.*

gutterball-2.0.0-1
gutterball-2.0.1-1
gutterball-2.0.2-1
gutterball-2.0.3-1
gutterball-2.0.4-1
gutterball-2.0.5-1

python-rhsm-0.*

python-rhsm-0.94.1-1
python-rhsm-0.94.10-1
python-rhsm-0.94.11-1
python-rhsm-0.94.12-1
python-rhsm-0.94.13-1
python-rhsm-0.94.2-1
python-rhsm-0.94.3-1
python-rhsm-0.94.4-1
python-rhsm-0.94.5-1
python-rhsm-0.94.6-1
python-rhsm-0.94.7-1
python-rhsm-0.94.8-1
python-rhsm-0.94.9-1