CVE-2026-32692 PUBLISHED

Unauthorized update of out-of-scope Vault secrets

Assigner: canonical
Reserved: 13.03.2026 Published: 18.03.2026 Updated: 18.03.2026

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3.1.6 through 3.6.18 allows an authenticated unit agent to perform unauthorized updates to secret revisions. With sufficient information, an attacker can poison any existing secret revision within the scope of that Vault secret back-end.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
CVSS Score: 7.6

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	Low

CVSS 3.1

Product Status

Vendor	Canonical
Product	Juju
Versions	Default: unaffected affected from 3.1.6 to 3.6.19 (excl.)

Credits

Harry Pidcock finder

References

https://github.com/juju/juju/security/advisories/GHSA-89x7-5m5m-mcmm

Problem Types

CWE-285 Improper Authorization CWE

Impacts

CAPEC-233 Privilege Escalation