Juju Security Vulnerabilities and Issues — Juju CVE List

Lucene search

CanonicalJuju

2 matches found

CVE•added 2024/10/02 11:15 a.m.•56 views

CVE-2024-8038

Vulnerable juju introspection abstract UNIX domain socket. An abstract UNIX domain socket responsible for introspection is available without authentication locally to network namespace users. This enables denial of service attacks.

7.9CVSS7.2AI score0.00014EPSS

CVE•added 2019/04/22 4:29 p.m.•39 views

CVE-2015-1316

Juju Core's Joyent provider before version 1.25.5 uploads the user's private ssh key.

7.5CVSS6.9AI score0.00358EPSS