Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/04/02 10:53 a.m.4 views

CVE-2026-4370

A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal Dqlite database cluster fails to perform proper TLS client and server authentication. Specifically, the Juju controller's database endpoint does not validate client...

10CVSS5.9AI score0.00381EPSS
Exploits1References1
NVD
NVD
added 2026/04/01 9:16 a.m.3 views

CVE-2026-4370

A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal Dqlite database cluster fails to perform proper TLS client and server authentication. Specifically, the Juju controller's database endpoint does not validate client...

10CVSS0.00381EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/01 8:9 a.m.2 views

CVE-2026-4370 Improper TLS Client/Server authentication and certificate verification on Database Cluster

A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal Dqlite database cluster fails to perform proper TLS client and server authentication. Specifically, the Juju controller's database endpoint does not validate client...

10CVSS5.9AI score0.00381EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/01 8:9 a.m.6 views

CVE-2026-4370

A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal Dqlite database cluster fails to perform proper TLS client and server authentication. Specifically, the Juju controller's database endpoint does not validate client...

10CVSS5.9AI score0.00381EPSS
Exploits1References2Affected Software1
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2022/07/26 12:39 a.m.5 views

Vault Enterprise Does Not Verify Existing Voter Status When Joining An Integrated Storage HA Node

Summary Vault Enterprise “Vault” clusters using Integrated Storage expose an unauthenticated API endpoint that could be abused to override the voter status of a node within a Vault HA cluster, introducing potential for future data loss or catastrophic failure. This vulnerability, CVE-2022-36129,...

9.1CVSS7AI score0.01333EPSS
Exploits0Affected Software1
Rows per page
Query Builder