Vulnerabilities > CVE-2015-5187 - Resource Management Errors vulnerability in Candlepinproject Candlepin

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
candlepinproject
CWE-399

Summary

Candlepin allows remote attackers to obtain sensitive information by obtaining Java exception statements as a result of excessive web traffic.

Vulnerable Configurations

Part Description Count
Application
Candlepinproject
1

Common Weakness Enumeration (CWE)