Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.5 views

Debian dsa-6213 : golang-github-canonical-lxd-dev - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6213 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6213-1 [email protected]...

9.1CVSS5.8AI score0.00424EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2026/04/13 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-34179

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH...

9.1CVSS5.8AI score0.00274EPSS
Exploits1References2
NVD
NVD
added 2026/04/09 10:16 a.m.6 views

CVE-2026-34179

In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/fingerprint for restricted TLS certificate users, allowing a remote authenticated attacker to escalate...

9.1CVSS0.00274EPSS
Exploits1References2
OSV
OSV
added 2026/04/09 10:16 a.m.5 views

UBUNTU-CVE-2026-34179

In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/fingerprint for restricted TLS certificate users, allowing a remote authenticated attacker to escalate...

9.1CVSS5.8AI score0.00274EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/09 9:22 a.m.28 views

CVE-2026-34179 Update of type field in restricted TLS certificate allows privilege escalation to cluster admin

In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/fingerprint for restricted TLS certificate users, allowing a remote authenticated attacker to escalate...

9.1CVSS0.00274EPSS
Exploits1References2
Rows per page
Query Builder