CVE-2024-11584

CWE-732Incorrect Permission AssignmentCWE-276Incorrect Default Permissions9 documents8 sources
Severity
5.3MEDIUM
EPSS
0.0%
top 88.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Canonical Cloud-init
Timeline
PublishedJun 26
Latest updateJul 28

Description

cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 2.5 | Impact: 3.4

Affected Packages4 packages

CVEListV5canonical/cloud-init21.325.1.3
NVDcanonical/cloud-init< 25.1.3
Debiancloud-init< 22.4.2-1+deb12u3+2
Ubuntucloud-init< 25.1.4-0ubuntu0~22.04.1+4

Patches

Patch: github.com

🔴Vulnerability Details

4
OSV
cloud-init vulnerabilities2025-07-28
OSV
CVE-2024-11584: cloud-init through 252025-06-26
GHSA
GHSA-3xmh-hrxh-fx8j: cloud-init through 252025-06-26
CVEList
CVE-2024-11584: cloud-init through 252025-06-26

📋Vendor Advisories

4
Ubuntu
cloud-init vulnerabilities2025-07-28
Red Hat
cloud-init: Cloud init permissions handling flaw2025-06-26
Microsoft
cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-i2025-06-10
Debian
CVE-2024-11584: cloud-init - cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.s...2024
CVE-2024-11584 (MEDIUM CVSS 5.3) | cloud-init through 25.1.2 includes | cvebase.io