Lucene search
K

4 matches found

OSV
OSV
added 2026/04/09 10:16 a.m.5 views

UBUNTU-CVE-2026-34177

Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden lxd/project/limits/permissions.go, which omits raw.apparmor and raw.qemu.conf from the set of keys blocked under the restricted.virtual-machines.lowlevel=block project restriction. A remote...

9.1CVSS5.8AI score0.00363EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/09 9:15 a.m.3 views

CVE-2026-34177 VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf

Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden lxd/project/limits/permissions.go, which omits raw.apparmor and raw.qemu.conf from the set of keys blocked under the restricted.virtual-machines.lowlevel=block project restriction. A remote...

9.1CVSS6AI score0.00363EPSS
Exploits0References2
CVE
CVE
added 2026/04/09 9:15 a.m.23 views

CVE-2026-34177

The CVE concerns Canonical LXD versions 4.12–6.7. It documents an incomplete denylist in isVMLowLevelOptionForbidden (lxd/project/limits/permissions.go) that omits raw.apparmor and raw.qemu.conf from restricted.virtual-machines.lowlevel=block. A remote attacker who has can_edit permission on a VM...

9.1CVSS6AI score0.00363EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/04/09 9:15 a.m.4 views

CVE-2026-34177

Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden lxd/project/limits/permissions.go, which omits raw.apparmor and raw.qemu.conf from the set of keys blocked under the restricted.virtual-machines.lowlevel=block project restriction. A remote...

9.1CVSS5.4AI score0.00363EPSS
Exploits0
Rows per page
Query Builder