Lucene search
GoogleOSV:CVE-2024-6984HistoryJul 29, 2024 - 2:15 p.m.
CVE-2024-6984
2024-07-2914:15:04
Google
osv.dev
1
juju
vulnerability
sensitive data
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
16.2%
An issue was discovered in Juju that resulted in the leak of the sensitive context ID, which allows a local unprivileged attacker to access other sensitive data or relation accessible to the local charm.
Related
osv
osv
Juju's unprivileged user running on charm node can leak any secret or relation data accessible to the local charm
2024-08-05 17:19:11
CVE-2024-6984 in github.com/juju/juju
2024-08-06 22:03:16
cvelist
cvelist
CVE-2024-6984
2024-07-29 14:04:05
cve
cve
CVE-2024-6984
2024-07-29 14:15:04
veracode
veracode
Sensitive Information Exposure
2024-07-30 19:39:49
nvd
nvd
CVE-2024-6984
2024-07-29 14:15:04
ubuntucve
ubuntucve
CVE-2024-6984
2024-07-29 00:00:00
vulnrichment
vulnrichment
CVE-2024-6984
2024-07-29 14:04:05
CVSS3
8.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
16.2%
Related for OSV:CVE-2024-6984