Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.1 views

PT-2025-28503

Name of the Vulnerable Software and Affected Versions: Juju versions prior to 3.6.8 Juju versions prior to 2.9.52 Description: The issue allows any authenticated controller user to upload arbitrary agent binaries to any model or to the controller itself without verifying model membership or...

8.8CVSS7.3AI score0.02323EPSS
Exploits1References13
Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.2 views

PT-2025-28633

Name of the Vulnerable Software and Affected Versions: Juju affected versions not specified Description: The issue concerns the "/log" endpoint on a Juju controller, which lacked sufficient authorization checks. This allowed unauthorized users to access debug messages that could contain sensitive...

6.5CVSS6.1AI score0.00243EPSS
Exploits1References10
Veracode
Veracodeadded 2024/10/17 5:19 a.m.7 views

Privilege Escalation

github.com/juju/juju is vulnerable to a privilege escalation. The vulnerability is due to the use of a predictable JUJUCONTEXTID as an authentication secret, allows an unprivileged user in the same network namespace to guess the ID and connect to the abstract domain socket...

8.7CVSS6.8AI score0.00198EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder