{"id":"CVE-2024-6107","details":"Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been addressed in MAAS and updated in the corresponding snaps.","modified":"2026-04-10T05:19:16.013521Z","published":"2025-07-21T09:15:23.970Z","references":[{"type":"FIX","url":"https://bugs.launchpad.net/maas/+bug/2069094"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"3.1.0"},{"fixed":"3.1.4"}]},{"events":[{"introduced":"3.2.0"},{"fixed":"3.2.11"}]},{"events":[{"introduced":"3.3.0"},{"fixed":"3.3.8"}]},{"events":[{"introduced":"3.4.0"},{"fixed":"3.4.4"}]},{"events":[{"introduced":"0"},{"last_affected":"3.5.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-6107.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}