CVE-2025-54289 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Privilege Escalation in operations API in Canonical LXD
High CVSS: 7.4

CVE-2025-54289

Privilege Escalation in operations API in Canonical LXD <6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format
Vendor
Canonical
Product
Lxd
CWE
CWE-1385
Yayın Tarihi
2025-10-02 10:15:39
Güncelleme
2025-10-24 14:34:37
Source Identifier
security@ubuntu.com
KEV Date Added
-

Kategoriler

CWE-1385 Lxd HIGH Canonical 2025

Referanslar

https://github.com/canonical/lxd/security/advisories/GHSA-3g72-chj4-2228 https://github.com/canonical/lxd/security/advisories/GHSA-3g72-chj4-2228