Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Snyk
Snykadded 2025/04/24 6:14 p.m.1 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization due to improper permission settings on a UNIX domain socket. An attacker can gain unauthorized access or perform unauthorized actions by running juju-run 'whoami' which escalates privileges to root level. Remediati...

10CVSS7AI score0.79953EPSS
Exploits5References3
Packet Storm
Packet Stormadded 2018/02/11 12:0 a.m.41 views

Juju-run Agent Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Juju-run Agent Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on Juju agent systems running the juju-run...

10CVSS9.2AI score0.79953EPSS
Exploits5
Veracode
Veracodeadded 2017/12/21 6:47 a.m.7 views

Privilege Escalation

github.com/juju/juju is vulnerable to privilege escalation. A malicious user with access to the terminal can gain root privileges through the command juju-run 'whoami'...

7.1AI score
Exploits0
Rows per page
Query Builder