Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Key leakage in juju/utils certificates
Vulnerability Description
Certificate generation in juju/utils using the cert.NewLeaf function could include private information. If this certificate were then transferred over the network in plaintext, an attacker listening on that network could sniff the certificate and trivially extract the private key from it.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
敏感数据的明文存储
Vulnerability Title
Canonical Juju utils 安全漏洞
Vulnerability Description
Canonical Juju utils是Canonical Juju开源的一个包。 Canonical Juju utils存在安全漏洞,该漏洞源于证书生成过程中可能包含私有信息,可能导致私钥泄露。
CVSS Information
N/A
Vulnerability Type
N/A