CVE-2024-6174 — Improper Authentication in Cloud-init

CWE-287 — Improper Authentication CWE-276 — Incorrect Default Permissions9 documents8 sources

Severity

8.8HIGHNVD

OSV5.3

EPSS

0.0%

top 88.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Canonical Cloud-init

Timeline

PublishedJun 26

Latest updateJul 28

Description

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

▶CVEListV5canonical/cloud-init0.7.9 — 25.1.3

▶NVDcanonical/cloud-init< 25.1.3

▶Debiancanonical/cloud-init< 22.4.2-1+deb12u3+2

▶Ubuntucanonical/cloud-init< 25.1.4-0ubuntu0~22.04.1+4

🔴Vulnerability Details

OSV

cloud-init vulnerabilities↗2025-07-28

▶

OSV

CVE-2024-6174: When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address↗2025-06-26

▶

CVEList

CVE-2024-6174: When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address↗2025-06-26

▶

GHSA

GHSA-w8g9-wp36-fchj: When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address↗2025-06-26

▶

📋Vendor Advisories

Ubuntu

cloud-init vulnerabilities↗2025-07-28

▶

Red Hat

cloud-init: Cloud init permissions flaw↗2025-06-26

▶

Microsoft

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.↗2025-06-10

▶

Debian

CVE-2024-6174: cloud-init - When a non-x86 platform is detected, cloud-init grants root access to a hardcode...↗2024

▶