PT-2026-24958 · Canonical+1 · Lxd+1
Bugbunny-Research
·
Published
2026-03-12
·
Updated
2026-04-20
·
CVE-2026-28384
CVSS v4.0
9.4
Critical
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
Name of the Vulnerable Software and Affected Versions
Canonical LXD versions 4.12 through 6.6
Description
An improper sanitization of the
compression algorithm parameter in Canonical LXD allows an authenticated, unprivileged user to execute commands as the LXD daemon on the LXD server via API calls to the image and backup endpoints. The vulnerable parameter compression algorithm can be exploited through API endpoints such as image and backup endpoints.Recommendations
Update to LXD snap version 5.0.6-e49d9f4 (channel 5.0/stable).
Update to LXD snap version 5.21.4-1374f39 (channel 5.21/stable).
Update to LXD snap version 6.7-1f11451 (channel 6.0 stable).
Exploit
Fix
RCE
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lxd
Red Os