2 matches found
Information Exposure
Overview Affected versions of this package are vulnerable to Information Exposure via the /log endpoint. An attacker can access sensitive debug log messages by authenticating with valid user credentials, even without proper authorization. Remediation Upgrade github.com/juju/juju/apiserver to...
Juju 代码问题漏洞
Juju is an open source application orchestration engine from Canonical Juju Open Source. A security vulnerability exists in Juju versions prior to 3.6.8 and prior to 2.9.52 that stems from allowing the upload of arbitrary proxy binaries, which could lead to remote code execution...