Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Canonical Subscribe
Filtered by product Juju
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-1316 1 Canonical 1 Juju 2019-10-09 5.0 MEDIUM 7.5 HIGH
Juju Core's Joyent provider before version 1.25.5 uploads the user's private ssh key.
CVE-2017-9232 1 Canonical 1 Juju 2019-10-02 10.0 HIGH 9.8 CRITICAL
Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without setting appropriate permissions, allowing privilege escalation by users on the system to root.