{"id":"CVE-2024-7558","details":"JUJU_CONTEXT_ID is a predictable authentication secret. On a Juju machine (non-Kubernetes) or Juju charm container (on Kubernetes), an unprivileged user in the same network namespace can connect to an abstract domain socket and guess the JUJU_CONTEXT_ID value. This gives the unprivileged user access to the same information and tools as the Juju charm.","aliases":["GHSA-mh98-763h-m9v4","GO-2024-3173"],"modified":"2026-04-09T10:28:56.847723Z","published":"2024-10-02T11:15:11.460Z","related":["SUSE-SU-2024:3911-1","openSUSE-SU-2024:0350-1","openSUSE-SU-2024:14447-1"],"references":[{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-7558"},{"type":"FIX","url":"https://github.com/juju/juju/security/advisories/GHSA-mh98-763h-m9v4"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/juju/juju","events":[{"introduced":"0"},{"fixed":"bc4db7b86800c81014d5c9ec1dabedbc99137596"},{"introduced":"924c9e190eb56d9a9324d9cc0dd9dd663c501ac4"},{"fixed":"0ef13a91b3cccff77f3fb8544a265c28ddfe3fe1"},{"introduced":"c7107ada8c471aa3ba105e5433e61861227e2ed4"},{"fixed":"3052b293cbab49b1a2f994724d2c90e80954cfe3"},{"introduced":"6c24d578c38db28567c6774f7d51803b807a9c5d"},{"fixed":"2634af3dab34358b2416e9d2d780c3c1b6e00d41"},{"introduced":"20a2e3972cb21b88ce8fdae7f54292da2e52aeff"},{"fixed":"06aa5de95bf57f3cbbd33ea968a0bad85e561ee0"},{"introduced":"01a596920ff5a632babf5aacf485cc78fe1ed5df"},{"fixed":"31b4b0914740b84ad8166993635ac797a44276de"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.9.51"},{"introduced":"3.1.0"},{"fixed":"3.1.10"},{"introduced":"3.2.0"},{"fixed":"3.2.4"},{"introduced":"3.3.0"},{"fixed":"3.3.7"},{"introduced":"3.4"},{"fixed":"3.4.6"},{"introduced":"3.5.0"},{"fixed":"3.5.4"}]}}],"versions":["delete-ecs","juju-","juju-1.19.3","juju-1.19.4","juju-1.21-alpha1","juju-1.21-alpha2","juju-1.21-alpha3","juju-1.25-alpha1","juju-1.26-alpha1","juju-1.26-alpha2","juju-1.26-alpha3","juju-2.0-alpha1","juju-2.0-alpha2","juju-2.0-beta1","juju-2.0-beta10","juju-2.0-beta11","juju-2.0-beta12","juju-2.0-beta13","juju-2.0-beta14","juju-2.0-beta15","juju-2.0-beta16","juju-2.0-beta17","juju-2.0-beta18","juju-2.0-beta2","juju-2.0-beta3","juju-2.0-beta4","juju-2.0-beta5","juju-2.0-beta6","juju-2.0-beta7","juju-2.0-beta8","juju-2.0-beta9","juju-2.0-rc1","juju-2.0-rc2","juju-2.0-rc3","juju-2.0.0","juju-2.1-beta1","juju-2.1-beta2","juju-2.2-alpha1","juju-2.2-beta1","juju-2.2-beta2","juju-2.2-beta3","juju-2.2-beta4","juju-2.2-rc1","juju-2.3-beta1","juju-2.3-beta2","juju-2.3-beta3","juju-2.3-rc1","juju-2.3-rc2","juju-2.4-beta1","juju-2.4-beta2","juju-2.4-beta3","juju-2.4-rc1","juju-2.5-beta1","juju-2.5-beta2","juju-2.5-beta3","juju-2.6-beta1","juju-2.6-beta2","juju-2.6-rc1","juju-2.7-beta1","juju-2.7-rc1","juju-2.8-beta1","juju-2.8-rc1","juju-2.9-beta1","juju-2.9-rc1","juju-2.9-rc10","juju-2.9-rc11","juju-2.9-rc12","juju-2.9-rc2","juju-2.9-rc3","juju-2.9-rc4","juju-2.9-rc5","juju-2.9-rc6","juju-2.9-rc7","juju-2.9-rc8","juju-2.9-rc9","juju-2.9.0","juju-2.9.1","juju-2.9.10","juju-2.9.11","juju-2.9.12","juju-2.9.13","juju-2.9.14","juju-2.9.15","juju-2.9.16","juju-2.9.17","juju-2.9.18","juju-2.9.19","juju-2.9.2","juju-2.9.20","juju-2.9.21","juju-2.9.22","juju-2.9.23","juju-2.9.24","juju-2.9.25","juju-2.9.26","juju-2.9.27","juju-2.9.28","juju-2.9.29","juju-2.9.3","juju-2.9.30","juju-2.9.31","juju-2.9.32","juju-2.9.33","juju-2.9.34","juju-2.9.35","juju-2.9.36","juju-2.9.37","juju-2.9.38","juju-2.9.39","juju-2.9.4","juju-2.9.40","juju-2.9.41","juju-2.9.42","juju-2.9.43","juju-2.9.44","juju-2.9.46","juju-2.9.5","juju-2.9.6","juju-2.9.7","juju-2.9.8","juju-2.9.9","juju-3.0-beta1","juju-3.0-beta2","juju-3.0-beta3","juju-3.0-beta4","juju-3.0-rc1","juju-3.1-beta1","juju-3.1-rc1","juju-3.1-rc2","juju-3.1.1","juju-3.1.2","juju-3.1.3","juju-3.1.4","juju-3.1.5","juju-3.2-beta1","juju-3.2-beta2","juju-3.2-beta3","juju-3.2-rc1","juju-3.2.1","juju-3.2.2","juju-3.2.4","juju-3.3.0","v2.9.45","v2.9.46","v2.9.47","v2.9.48","v2.9.49","v3.1.6","v3.1.7","v3.1.8","v3.2.3","v3.3.0","v3.3.1","v3.3.2","v3.3.3","v3.3.4","v3.3.5","v3.3.6","v3.4-beta1","v3.4-rc1","v3.4-rc2","v3.4.0","v3.4.1","v3.4.2","v3.4.3","v3.4.4","v3.5.0","v3.5.1","v3.5.2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-7558.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}