CVE-2025-54289

CWE-13858 documents6 sources

Severity

7.4HIGH

EPSS

0.0%

top 87.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Canonical LXD Github.com Canonical/lxd

Timeline

PublishedOct 2

Latest updateNov 5

Description

Privilege Escalation in operations API in Canonical LXD <6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages4 packages

▶CVEListV5canonical/lxd6 — 6.5+1

▶NVDcanonical/lxd4.0.0 — 5.21.4+1

▶Gogithub.com/canonical/lxd4.0 — 5.21.4+2

▶Debianincus< 6.0.4-2+deb13u1+1

🔴Vulnerability Details

OSV

Privilege Escalation via WebSocket Connection Hijacking in Operations API in github.com/canonical/lxd↗2025-11-05

▶

GHSA

Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API↗2025-10-02

▶

OSV

CVE-2025-54289: Privilege Escalation in operations API in Canonical LXD <6↗2025-10-02

▶

CVEList

Privilege Escalation via WebSocket Connection Hijacking in LXD Operations API↗2025-10-02

▶

OSV

Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API↗2025-10-02

▶

📋Vendor Advisories

Debian

CVE-2025-54289: incus - Privilege Escalation in operations API in Canonical LXD <6.5 on multiple platfor...↗2025

▶