CVE-2023-1832 Information

Description

An improper access control flaw was found in Candlepin. An attacker can create data scoped under another customer/tenant which can result in loss of confidentiality and availability for the affected customer/tenant.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2184364 https://access.redhat.com/security/cve/CVE-2023-1832