VDB
CVE-2024-6219
CVE-2024-6219
PUBLISHED
CVSS 3.799999952316284 LOW
lxd has a restricted TLS certificate privilege escalation when in PKI mode
EPSS 0.16% · 37.0th percentile
Risk Scores
CVSS v3.1
3.799999952316284
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
EPSS Score
0.16%
37.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | canonical/lxd | 0, 0 |
| Canonical Ltd. | LXD | 0, 0 |
| canonical | lxd | 0, 0 |
Timeline
- Dec 5, 2024 CVE Published
- Dec 5, 2024 PoC Published
- Dec 6, 2024 PoC Published
- Dec 7, 2024 EPSS Score
- Dec 11, 2024 CVE Updated
- Dec 24, 2024 EPSS Score
- Jan 10, 2025 EPSS Score
- Jan 26, 2025 EPSS Score
- Feb 12, 2025 EPSS Score
- Mar 1, 2025 EPSS Score
- Mar 18, 2025 EPSS Score
- Mar 20, 2025 Coalition ESS Score
References
- https://github.com/canonical/lxd/security/advisories/GHSA-jpmc-7p9c-4rxf issue
- https://www.cve.org/CVERecord?id=CVE-2024-6219 issue
- https://nvd.nist.gov/vuln/detail/CVE-2024-6219 advisory
- https://github.com/canonical/lxd/pull/12313 url
- https://github.com/canonical/lxd package
- https://pkg.go.dev/vuln/GO-2024-3313 url