CVE-2024-6107

Critical CVSS 9.6

Overview

Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been addressed in MAAS and updated in the corresponding snaps.

CWE: CWE-287 Published: 2025-07-21T09:15:23.970

Risk analysis

This vulnerability is rated 🔴 CRITICAL.

CVSS: 9.6 (CRITICAL)
Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags