{"id":"GO-2025-3806","summary":"Juju vulnerable to sensitive log retrieval via authenticated endpoint without authorization in github.com/juju/juju","details":"Juju vulnerable to sensitive log retrieval via authenticated endpoint without authorization in github.com/juju/juju","aliases":["CVE-2025-53512","GHSA-r64v-82fh-xc63"],"modified":"2026-03-03T04:57:21.905614Z","published":"2025-07-28T19:57:13Z","database_specific":{"review_status":"UNREVIEWED","url":"https://pkg.go.dev/vuln/GO-2025-3806"},"references":[{"type":"ADVISORY","url":"https://github.com/juju/juju/security/advisories/GHSA-r64v-82fh-xc63"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-53512"},{"type":"FIX","url":"https://github.com/juju/juju/commit/402ff008dcc2cb57f4441968628637efb5c2a662"},{"type":"FIX","url":"https://github.com/juju/juju/commit/c91a1f4046956874ba77c8b398aecee3d61a2dc3"}],"affected":[{"package":{"name":"github.com/juju/juju","ecosystem":"Go","purl":"pkg:golang/github.com/juju/juju"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.0.0-20250619024904-402ff008dcc2"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2025-3806.json"}}],"schema_version":"1.7.3"}