CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/10/06 5:13 p.m.•2 views

CVE-2025-54287

Template Injection in instance snapshot creation component in Canonical LXD = 4.0 allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine...

7.1CVSS6.8AI score0.00067EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-32103

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00084EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-32098

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00067EPSS

Exploits1References2

OSV•added 2025/10/02 10:15 a.m.•1 views

DEBIAN-CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

6.8CVSS5.3AI score0.00059EPSS

Exploits1References1

OSV•added 2025/10/02 10:15 a.m.•1 views

UBUNTU-CVE-2025-54287

7.1CVSS5.9AI score0.00067EPSS

Exploits1References3

Positive Technologies•added 2025/10/02 12:0 a.m.•2 views

PT-2025-40326

Name of the Vulnerable Software and Affected Versions Canonical LXD versions 5.0 and later Description A Cross-Site Request Forgery CSRF issue exists in LXD-UI. This allows an attacker to create and start container instances without user consent by submitting crafted HTML forms that exploit clien...

8.8CVSS6.3AI score0.00119EPSS

Exploits7References38

Positive Technologies•added 2025/10/02 12:0 a.m.•1 views

PT-2025-40340

Name of the Vulnerable Software and Affected Versions Canonical LXD version 5.0 LTS Description An issue exists in the log file retrieval function that allows authenticated remote attackers to read arbitrary files on the host system. This occurs through crafted log file names or symbolic links. T...

8.8CVSS6.4AI score0.00119EPSS

Exploits7References35

Positive Technologies•added 2025/10/02 12:0 a.m.•2 views

PT-2025-40333

Name of the Vulnerable Software and Affected Versions Canonical LXD versions prior to 6.5 Canonical LXD versions prior to 5.21.4 Description An information disclosure issue exists in the image export API of Canonical LXD. A network attacker can determine project existence without authentication b...

8.8CVSS6.2AI score0.00119EPSS

Exploits7References30

Positive Technologies•added 2024/03/04 12:0 a.m.•1 views

PT-2024-11159 · Canonical · Linux +104

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

7.3AI score

Exploits0References13

Positive Technologies•added 2023/02/22 12:0 a.m.•1 views

PT-2023-10378 · Canonical +4 · Linux +52

Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The candidate number is rejected and should not be used. It was in a CNA pool that was not assigned to any issues during 2017. Recommendations: At the moment, there is no...

6.1AI score

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by