Pulp Project: Security Vulnerabilities
Pulp does not remove permissions for named objects upon deletion, which allows authenticated users to gain the privileges of a deleted object via creating an object with the same name.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-08-18