330 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-48750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - incus - None lxd - None Ubuntu Linux - security update CVE-2026-48750 Note that Nessus relies on the presence of the package as reported by the...
CVE-2026-48750
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:25+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-73hr-m85f-64v9 2026-07-07 20:44:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mq3htunogl2b...
CVE-2026-48751
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:22+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-48q5-w887-33wv 2026-07-07 20:50:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mq3i6l345g2h...
CVE-2026-48753
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:17+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-ccjc-4qc3-jxqc 2026-07-07 20:46:06+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mq3hxgxr2u24...
CVE-2026-48754
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:15+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-4xg6-52mh-fpw8...
CVE-2026-48755
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:12+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-v6mj-8pf4-hhw4 2026-07-01 02:15:18+00:00| seen| https://bsky.app/profile/securityonline.bsky.social/post/3mpkh3n7jjr2b 2026-07-01 02:31:46+00:00...
CVE-2026-48756
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:10+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-xhqx-mgh3-3h7q...
CVE-2026-48769
creationtimestamp| type| source ---|---|--- 2026-06-26 20:35:07+00:00| published-proof-of-concept| https://github.com/lxc/incus/security/advisories/GHSA-f6m5-xw2g-xc4x 2026-07-01 02:15:18+00:00| seen| https://bsky.app/profile/securityonline.bsky.social/post/3mpkh3n7jjr2b 2026-07-01 02:31:46+00:00...
GHSA-F6M5-XW2G-XC4X Incus has an arbitrary file write on its client due to trusted image hash
Summary An arbitrary file write exists in the Incus client when a malicious image server returns a crafted Incus-Image-Hash header. This can lead to arbitrary command execution as root on the server. Details - cmd/incusd/images.go:611-684 handles source.type=url by HEADing the user-supplied URL,...
GHSA-4XG6-52MH-FPW8 Incus: Nil-pointer dereference in createDependentVolumesFromBackup on disk.{Volume,VolumeSnapshots,Pool}
Summary backend.createDependentVolumesFromBackup in internal/server/storage/backend.go contains a cluster of unguarded pointer derefs on every dependent-volume entry's VolumeSnapshotsi, Volume, and Pool sub-fields. An authenticated user with cancreateinstances permission on any project can crash...
GHSA-CCJC-4QC3-JXQC Incus has an arbitrary file write via path traversal in S3 multipart upload
Summary The S3 protocol upload endpoint is vulnerable to path traversal and allows creation of arbitrary files on the host. This behavior could lead to arbitrary command execution. In internal/server/storage/s3/local/multipart.go, user-controlled upload ID is appended to the uploads directory...
GHSA-VXP5-584Q-C479 Incus has arbitrary file read+write on host via templates/ symlink in malicious image
Summary A specially crafted image or instance backup can be used to read or create/write arbitrary files on the host; possibly leading to arbitrary command execution. Details For container images, internal/server/storage/utils.go calls archive.UnpackimageFile, destPath, .... The tar extraction pa...
GHSA-48Q5-W887-33WV Incus has a restricted project bypass leading to arbitrary command execution
Summary Instance snapshots ignore the restricted.containers.lowlevel=block setting; allowing for arbitrary command execution on the Incus server by abusing lowlevel hooks such as raw.lxc and raw.qemu. Details Instance snapshots ignore the restricted.containers.lowlevel=block setting; allowing for...
[SECURITY] [DSA 6370-1] incus security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6370-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 26, 2026 https://www.debian.org/security/faq -...
PT-2026-53016
Name of the Vulnerable Software and Affected Versions Incus affected versions not specified Description An arbitrary file write exists in the Incus client that can lead to arbitrary command execution as root on the server. The issue occurs when the client processes a request with source.type=url...
Debian dsa-6370 : xnest - security update
The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6370 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6370-1 [email protected] https://www.debian.org/securit...
PT-2026-53012
Name of the Vulnerable Software and Affected Versions Incus affected versions not specified Description Instance snapshots ignore the restricted.containers.lowlevel=block setting, which allows for arbitrary command execution on the Incus server. This occurs by abusing lowlevel hooks such as raw.l...
[BSA-133] Security Update for incus
Mathias Gibbens uploaded new packages for incus which fixed the following security problems: CVE ID : CVE-2026-40195 CVE-2026-40197 CVE-2026-40243 CVE-2026-40251 CVE-2026-41647 CVE-2026-41648 CVE-2026-41684 CVE-2026-41685 Multiple security issues were discovered in Incus, a system container and...
CVE-2026-41684
A flaw was found in Incus, a system container and virtual machine manager. An authenticated user with permissions to import instance backups could craft a malicious backup archive. This archive, containing a valid inline configuration but a malformed legacy backup file, could cause the Incus daem...
CVE-2026-40243
A flaw was found in Incus, a system container and virtual machine manager. The Open Virtual Network OVN database connection logic contains broken Transport Layer Security TLS validation. A remote attacker, by impersonating or intercepting the OVN endpoint on the management network, can present a...