Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / canonical

canonical

4,226 tracked vulnerabilities.

CVE-2026-6970 HIGH

authd Denial of Service and Local Privilege Escalation

CVE-2026-31431 HIGH KEV

crypto: algif_aead - Revert to operating out-of-place

CVE-2026-6369 MEDIUM

Exposed Session Token in canonical-livepatch client snap

CVE-2026-5774 MEDIUM

Juju API Server Denial of Service and Authentication Replay via Unsynchronized Token Map

CVE-2026-5412 CRITICAL

Juju CloudSpec API could leak senstive information

CVE-2026-34179 CRITICAL

Update of type field in restricted TLS certificate allows privilege escalation to cluster admin

CVE-2026-34178 CRITICAL

Importing a crafted backup leads to project restriction bypass

CVE-2026-34177 CRITICAL

VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf

CVE-2026-4370 CRITICAL

Improper TLS Client/Server authentication and certificate verification on Database Cluster

CVE-2026-32694 MEDIUM

Insecure Direct Object Reference attack via predictable secret ID in Juju

CVE-2026-32693 HIGH

Unauthorized access to Kubernetes secrets in Juju

CVE-2026-32692 HIGH

Unauthorized update of out-of-scope Vault secrets

CVE-2026-32691 MEDIUM

Timing ownership claim attack on new external back-end secrets

CVE-2026-3888 HIGH

Local Privilege Escalation in snapd

CVE-2026-28384 CRITICAL

Canonical LXD 4.12-6.6 - Command Injection

CVE-2026-3351 MEDIUM

Canonical LXD 6.6 - Authenticated Certificate Enumeration via GET /1.0/certificates Endpoint

CVE-2026-1237 LOW

juju - Improper Verification of Cryptographic Signature in Cross-Model Authorization

CVE-2025-15480 CRITICAL

Senstive information disclosure was affecting ubuntu-desktop-provision

CVE-2025-14551 HIGH

Senstive information disclosure was affecting subiquity

CVE-2025-68153 MEDIUM

Juju: Resource poisoning

CVE-2025-68152 MEDIUM

Juju: Read All Controller Logs From Compromised Workload

CVE-2025-13350 HIGH

Ubuntu Linux 6.8 GA - Privilege Escalation

CVE-2025-5467 LOW

Apport 2.20.1-0ubuntu1-2.20.1-0ubuntu2.30 - Incorrect Group Ownership Assignment in Crash File Creation

CVE-2025-7044 HIGH

MAAS 3.3.0-3.3.10 - Authenticated Privilege Escalation via Websocket User Update Injection

CVE-2025-54293 MEDIUM

Canonical LXD 5.0 LTS - Authenticated Path Traversal via Log File Retrieval

Page 1 of 170 Next

Products

ubuntu_linux 4,106 juju 20 lxd 19 apport 17 snapd 16 cloud-init 9 Juju 7 metal_as_a_service 5 accountsservice 4 authd 4 ubuntu_core 4 ubuntu_touch 4 landscape 3 maas 3 multipass 3 subiquity 3 Ubuntu 2 acpi-support 2 lxcfs 2 software-properties 2 ubuntu 2 ubuntu_desktop_provision 2 unity-firefox-extension 2 update-manager 2 Ubuntu 16.04 LTS 1 Ubuntu 18.04 LTS 1 Ubuntu 20.04 LTS 1 Ubuntu 22.04 LTS 1 Ubuntu 24.04 LTS 1 Ubuntu Linux 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy