CVE-2025-53513
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
The /charms endpoint on a Juju controller lacked sufficient authorization checks, allowing any user with an account on the controller to upload a charm. Uploading a malicious charm that exploits a Zip Slip vulnerability could allow an attacker to gain access to a machine running a unit through the affected charm.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Canonical | Juju | 2.0.0 < 2.9.52 | affected |
| Canonical | Juju | 3.0.0 < 3.6.8 | affected |
Weaknesses
- CWE-24: CWE-24: Path Traversal: '../filedir'
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: total
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.