Lucene search
K

123 matches found

OSV
OSV
added 2025/11/13 11:1 p.m.2 views

GHSA-3G2J-VM47-X4MJ LXD vulnerable to a local privilege escalation through custom storage volumes

Impact This affects any LXD user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true as well as access to the host as an unprivileged user. The most common case for this would be...

8.6CVSS6.9AI score
Exploits0References8
GithubExploit
GithubExploit
added 2025/11/06 12:57 p.m.619 views

Exploit for CVE-2025-31133

CVE-2025-31133 runc maskedPaths Exploit PoC WARNING:...

7.9AI score0.0067EPSS
Exploits2
OSV
OSV
added 2025/11/05 6:41 p.m.4 views

GO-2025-4004 Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns in github.com/lxc/lxd

Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns in github.com/lxc/lxd...

7.1CVSS7.3AI score0.00342EPSS
Exploits1References1
OSV
OSV
added 2025/11/05 6:41 p.m.4 views

GO-2025-4002 Canonical LXD Project Existence Determination Through Error Handling in Image Export Function in github.com/canonical/lxd

Canonical LXD Project Existence Determination Through Error Handling in Image Export Function in github.com/canonical/lxd...

6.9CVSS7AI score0.00317EPSS
Exploits1References1
OSV
OSV
added 2025/10/17 12:0 a.m.4 views

DSA-6028-1 lxd - security update

Bulletin has no description...

8.8CVSS7AI score0.00541EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2025/10/06 5:13 p.m.5 views

CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

5.1CVSS6.5AI score0.00326EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/06 5:13 p.m.3 views

CVE-2025-54287

Template Injection in instance snapshot creation component in Canonical LXD = 4.0 allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine...

7.1CVSS6.8AI score0.00342EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-32098

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00342EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-32103

Malicious code in bioql PyPI...

7.1CVSS6.3AI score0.00541EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-1023

Malicious code in bioql PyPI...

7.4CVSS6.2AI score0.01777EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0920

Malicious code in bioql PyPI...

7.5CVSS6.7AI score0.00986EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/10/02 11:23 p.m.2 views

SUSE CVE-2025-54287

Template Injection in instance snapshot creation component in Canonical LXD = 4.0 allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine...

6.5CVSS7.2AI score0.00342EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/10/02 10:43 a.m.2 views

CVE-2025-54293 Path Traversal in LXD Instance Log File Retrieval

Path Traversal in the log file retrieval function in Canonical LXD 5.0 LTS on Linux allows authenticated remote attackers to read arbitrary files on the host system via crafted log file names or symbolic links...

7.1CVSS6.4AI score0.00541EPSS
Exploits1References1
NVD
NVD
added 2025/10/02 10:15 a.m.4 views

CVE-2025-54289

Privilege Escalation in operations API in Canonical LXD 6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format...

8.1CVSS0.00193EPSS
Exploits1References1
OSV
OSV
added 2025/10/02 10:15 a.m.5 views

DEBIAN-CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

6.8CVSS5.3AI score0.00326EPSS
Exploits1References1
OSV
OSV
added 2025/10/02 10:15 a.m.3 views

UBUNTU-CVE-2025-54287

Template Injection in instance snapshot creation component in Canonical LXD = 4.0 allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine...

7.1CVSS5.9AI score0.00342EPSS
Exploits1References3
CVE
CVE
added 2025/10/02 9:20 a.m.20 views

CVE-2025-54288

CVE-2025-54288 affects Canonical LXD devLXD server on Linux container platforms. The issue arises from a vulnerability in how the devLXD code identifies containers via process cmdline information, allowing attackers with root privileges inside one container to impersonate other containers and rea...

6.8CVSS6.4AI score0.00326EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2025/10/02 9:20 a.m.8 views

CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

6.8CVSS5.2AI score0.00326EPSS
Exploits1
CNNVD
CNNVD
added 2025/10/02 12:0 a.m.6 views

LXD 安全漏洞

LXD is a Canonical open source container for managing applications on Linux-based systems. A security vulnerability exists in LXD 4.0 and later versions, which stems from information spoofing in the devLXD server that could lead to container impersonation and information disclosure...

6.8CVSS6.1AI score0.00326EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.6 views

PT-2025-40340

Name of the Vulnerable Software and Affected Versions Canonical LXD version 5.0 LTS Description An issue exists in the log file retrieval function that allows authenticated remote attackers to read arbitrary files on the host system. This occurs through crafted log file names or symbolic links. T...

8.8CVSS6.4AI score0.00541EPSS
Exploits7References35
Rows per page
Query Builder