Security Advisory

CVE-2025-54290

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-02 09:24:12

Last updated 2025-10-02 17:31:02

Assigner canonical

State PUBLISHED

Description

Information disclosure in image export API in Canonical LXD before 6.5 and 5.21.4 on Linux allows network attackers to determine project existence without authentication via crafted requests using wildcard fingerprints.

← Browse all CVEs View on cve.org ↗