CVE-2024-8038 | Canonical Juju up to 2.9.50/3.1.9/3.3.6/3.4.5/3.5.3 Unix Domain Socket unprotected alternate channel (GHSA-xwgj-vpm9-q2rq)

Posted by Angelo Barbosa | Oct 2, 2024 | CVE

A vulnerability classified as problematic was found in Canonical Juju up to 2.9.50/3.1.9/3.3.6/3.4.5/3.5.3. Affected by this vulnerability is an unknown functionality of the component Unix Domain Socket Handler. The manipulation leads to unprotected alternate channel.

This vulnerability is known as CVE-2024-8038. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8038 | Canonical Juju up to 2.9.50/3.1.9/3.3.6/3.4.5/3.5.3 Unix Domain Socket unprotected alternate channel (GHSA-xwgj-vpm9-q2rq)

Related Posts

CVE-2024-20509 | Cisco Meraki MX/Meraki Z AnyConnect VPN Server race condition (cisco-sa-meraki-mx-vpn-dos-by-QWUkqV7X)

CVE-2024-0976 | WP Event Manager Plugin up to 3.1.41 on WordPress cross site scripting

CVE-2024-29509 | Artifex Ghostscript up to 10.2.x PDFPassword heap-based overflow

CVE-2024-24849 | Quicksand Post Filter jQuery Plugin up to 3.1.1 on WordPress renderAdmin cross-site request forgery