Canonical Ltd Lxd vulnerabilities
3 known vulnerabilities affecting canonical_ltd/lxd.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM1LOW2
Vulnerabilities
Page 1 of 1
CVE-2024-6219LOWCVSS 3.8fixed in 5.21.12024-12-06
CVE-2024-6219 [LOW] CWE-295 CVE-2024-6219: Mark Laing discovered in LXD's PKI mode, until version 5.21.1, that a restricted certificate could b
Mark Laing discovered in LXD's PKI mode, until version 5.21.1, that a restricted certificate could be added to the trust store with its restrictions not honoured.
cvelistv5nvd
CVE-2024-6156LOWCVSS 3.8≥ 4.0, < 4.0.10≥ 4.0, < 5.0.4+2 more2024-12-06
CVE-2024-6156 [LOW] CWE-295 CVE-2024-6156: Mark Laing discovered that LXD's PKI mode, until version 5.21.2, could be bypassed if the client's c
Mark Laing discovered that LXD's PKI mode, until version 5.21.2, could be bypassed if the client's certificate was present in the trust store.
cvelistv5nvd
CVE-2023-49721MEDIUMCVSS 6.7v02024-02-14
CVE-2023-49721 [MEDIUM] CWE-276 CVE-2023-49721: An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident
An insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.
cvelistv5nvd