Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / canonical

canonical

4,226 tracked vulnerabilities.

CVE-2025-54292 MEDIUM

Canonical LXD 5.0.0-5.21.4 - Authenticated Path Traversal via URL Path Resource Names

CVE-2025-54291 MEDIUM

Canonical LXD < 5.21.4 - Unauthenticated Information Disclosure via Images API

CVE-2025-54290 MEDIUM

Canonical LXD < 5.21.4 - Unauthenticated Information Disclosure via Image Export API

CVE-2025-54289 HIGH

Canonical LXD < 5.21.4 - Privilege Escalation via WebSocket Connection Hijacking

CVE-2025-54288 MEDIUM

Canonical LXD 4.0-5.21.4 - Authenticated Information Spoofing via Process Name

CVE-2025-54287 MEDIUM

Canonical LXD >=4.0 - Info Disclosure

CVE-2025-54286 HIGH

Canonical LXD >=5.0 <5.0.5 - Cross-Site Request Forgery via Client Certificate Authentication

CVE-2025-5199 HIGH

Canonical Multipass <= 1.15.1 - Privilege Escalation via Launch Daemon File Modification

CVE-2025-0928 HIGH

Juju < 2.9.52 and < 3.6.8 - Authenticated Arbitrary Agent Binary Upload

CVE-2025-53513 HIGH

Juju < 2.9.52 - Path Traversal via Malicious Charm Upload

CVE-2025-53512 MEDIUM

Juju < 2.9.52 - Unauthenticated Sensitive Information Exposure via /log Endpoint

CVE-2025-6224 MEDIUM

juju/utils 4.0.0-4.0.4 - Cleartext Storage of Sensitive Information in Certificate Generation

CVE-2025-32463 CRITICAL KEVNUCLEI

Sudo <1.9.17p1 - Privilege Escalation

CVE-2025-5689 HIGH

authd < 0.5.4 - Improper Privilege Management

CVE-2025-5054 MEDIUM

Canonical apport <2.32.0 - Info Disclosure

CVE-2025-24375 MEDIUM

Charmed MySQL K8s Operator <221 - SQL Injection

CVE-2025-31479 HIGH

canonical/get-workflow-version-action < 1.0.1 - Sensitive Information Disclosure in Exception Output

CVE-2025-26466 MEDIUM

OpenSSH - Denial of Service via Ping Packet Memory Exhaustion

CVE-2024-6107 CRITICAL

Canonical Metal as a Service 3.1.0-3.1.3 - Unauthenticated RPC Command Execution via Malicious Client

CVE-2024-6174 HIGH

cloud-init < 25.1.3 - Unauthenticated Root Access via Hardcoded Local IP URL

CVE-2024-11584 MEDIUM

cloud-init <25.1.2 - Privilege Escalation

CVE-2024-6219 LOW

LXD < 5.21.1 - Improper Certificate Validation in PKI Mode

CVE-2024-6156 LOW

LXD < 5.21.2 - Improper Certificate Validation in PKI Mode

CVE-2024-9312 HIGH

Authd <0.3.6 - Privilege Escalation

CVE-2024-9313 HIGH

Authd PAM <0.3.5 - Privilege Escalation

Previous Page 2 of 170 Next

Products

ubuntu_linux 4,106 juju 20 lxd 19 apport 17 snapd 16 cloud-init 9 Juju 7 metal_as_a_service 5 accountsservice 4 authd 4 ubuntu_core 4 ubuntu_touch 4 landscape 3 maas 3 multipass 3 subiquity 3 Ubuntu 2 acpi-support 2 lxcfs 2 software-properties 2 ubuntu 2 ubuntu_desktop_provision 2 unity-firefox-extension 2 update-manager 2 Ubuntu 16.04 LTS 1 Ubuntu 18.04 LTS 1 Ubuntu 20.04 LTS 1 Ubuntu 22.04 LTS 1 Ubuntu 24.04 LTS 1 Ubuntu Linux 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy