cvedb.io
CVE-2021-4142
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2022-08-24T16:15:09.547 · Last modified 2026-06-17T04:19:06.480

Summary

The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.

Affected products

candlepinproject — candlepin

Does this affect you?

Add your gear to cvedb and we'll alert you only when candlepinproject ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.