Advanced Threat Data Export

Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.

Vulnerability Keyword

Date Range

Severity

Format

Upgrade Package

Data export is locked. Upgrade your package to enable filtering and downloading.

← Back to CVE List

CVE-2026-5412NVD

Description

In Juju versions prior to 2.9.57 and 3.6.21, an authorization issue exists in the Controller facade. An authenticated user can call the CloudSpec API method to extract the cloud credentials used to bootstrap the controller. This allows a low-privileged user to access sensitive credentials. This issue is resolved in Juju versions 2.9.57 and 3.6.21.

Severity Level

CRITICAL (9.9)

Published Date

10/04/2026

Last Modified

30/04/2026

Exploitation Status

UNKNOWN

References

https://github.com/juju/juju/pull/22205
https://github.com/juju/juju/pull/22206
https://github.com/juju/juju/security/advisories/GHSA-w5fq-8965-c969

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

Advanced Threat Data Export

CVE-2026-5412NVD

Description

References