CVE-2024-6984
- Source
- https://cve.org/CVERecord?id=CVE-2024-6984
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-6984.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-6984
- Aliases
- Related
- Published
- 2024-07-29T14:15:04.477Z
- Modified
- 2026-03-13T07:59:30.085035Z
- Severity
-
- 3.8 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in Juju that resulted in the leak of the sensitive context ID, which allows a local unprivileged attacker to access other sensitive data or relation accessible to the local charm.
- References
Affected packages
Git / github.com/juju/juju
Affected ranges
- Type
- GIT
- Repo
- https://github.com/juju/juju
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixedFixed
- Database specific
{ "versions": [ { "introduced": "2.9" }, { "fixed": "2.9.50" }, { "introduced": "3.1" }, { "fixed": "3.1.9" }, { "introduced": "3.3" }, { "fixed": "3.3.6" }, { "introduced": "3.4" }, { "fixed": "3.4.5" }, { "introduced": "3.5" }, { "fixed": "3.5.3" } ] }
Affected versions
Other
juju-
juju-2.*
juju-2.8.11
juju-2.9.0
juju-2.9.1
juju-2.9.10
juju-2.9.11
juju-2.9.12
juju-2.9.13
juju-2.9.14
juju-2.9.15
juju-2.9.16
juju-2.9.17
juju-2.9.18
juju-2.9.19
juju-2.9.2
juju-2.9.20
juju-2.9.21
juju-2.9.22
juju-2.9.23
juju-2.9.24
juju-2.9.25
juju-2.9.26
juju-2.9.27
juju-2.9.28
juju-2.9.29
juju-2.9.3
juju-2.9.30
juju-2.9.31
juju-2.9.32
juju-2.9.33
juju-2.9.34
juju-2.9.35
juju-2.9.36
juju-2.9.37
juju-2.9.38
juju-2.9.39
juju-2.9.4
juju-2.9.40
juju-2.9.41
juju-2.9.42
juju-2.9.43
juju-2.9.44
juju-2.9.5
juju-2.9.6
juju-2.9.7
juju-2.9.8
juju-2.9.9
v2.*
v2.9.45
v2.9.46
v2.9.47
v2.9.48
v2.9.49