Improper authorization in the API endpoint GET /1.0/certificates in Canonical LXD 6.6 on Linux allows an authenticated, restricted user to enumerate all certificate fingerprints trusted by the lxd ser

Description

Improper authorization in the API endpoint GET /1.0/certificates in Canonical LXD 6.6 on Linux allows an authenticated, restricted user to enumerate all certificate fingerprints trusted by the lxd server.

Affected Products

Vendor	Product	Versions
canonical	lxd	—

References

https://github.com/canonical/lxd/commit/d936c90d47cf0be1e9757df897f769e9887ebde1(Patch)
https://github.com/canonical/lxd/pull/17738(Issue Tracking, Patch)
https://github.com/canonical/lxd/security/advisories/GHSA-crmg-9m86-636r(Exploit, Mitigation, Vendor Advisory)

CVSS 3.14.3 MEDIUM

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA KEV❌ No

Actively exploited❌ No

Patch available

https://github.com/canonical/lxd/commit/d936c90d47cf0be1e9757df897f769e9887ebde1 https://github.com/canonical/lxd/pull/17738

CWECWE-862

PublishedMar 3, 2026

Last enriched5d ago

Trending Score0

Source articles0

Independent0

Info Completeness8/14

Improper authorization in the API endpoint GET /1.0/certificates in Canonical LXD 6.6 on Linux allows an authenticated, restricted user to enumerate all certificate fingerprints trusted by the lxd ser

Description

Affected Products

References

Community Vote

Related CVEs (5)

Pin to Dashboard

Verification

Vulnerability Timeline