CVE-2024-6219

Sažetak

Mark Laing discovered in LXD's PKI mode, until version 5.21.1, that a restricted certificate could be added to the trust store with its restrictions not honoured.

Reference

https://github.com/canonical/lxd/security/advisories/GHSA-jpmc-7p9c-4rxf
https://www.cve.org/CVERecord?id=CVE-2024-6219

CVSS

Base:	3.8
Impact:	1.4
Exploitability:	2.0

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	NONE	NONE

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Zadnje važnije ažuriranje

06-12-2024 - 00:15

Objavljeno

06-12-2024 - 00:15