Vulnerabilities > Canonical > Juju
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-04-22 | CVE-2015-1316 | Key Management Errors vulnerability in Canonical Juju Juju Core's Joyent provider before version 1.25.5 uploads the user's private ssh key. | 5.0 |
2017-05-28 | CVE-2017-9232 | Missing Authorization vulnerability in Canonical Juju Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without setting appropriate permissions, allowing privilege escalation by users on the system to root. | 10.0 |