Security Advisory

CVE-2026-32692

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-18 12:35:29

Last updated 2026-03-18 13:42:54

Assigner canonical

State PUBLISHED

Description

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3.1.6 through 3.6.18 allows an authenticated unit agent to perform unauthorized updates to secret revisions. With sufficient information, an attacker can poison any existing secret revision within the scope of that Vault secret back-end.

← Browse all CVEs View on cve.org ↗