CVE-2023-5536

Name of the Vulnerable Software and Affected Versions LXD (affected versions not specified) Ubuntu Server (affected versions not specified)

Description A feature in LXD affects the default configuration of Ubuntu Server, allowing privileged users in the lxd group to escalate their privilege to root without requiring a sudo password.

Recommendations For LXD, consider restricting access to the lxd group to minimize the risk of exploitation. For Ubuntu Server, review and modify the default configuration to require a sudo password for privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.