Broken Access Control in the devLXDInstancePatchHandler component of Canonical LXD allows an untrusted guest to mount, read, and overwrite another guest's custom storage volume via a crafted device PATCH request over /dev/lxd when security.devlxd.management.volumes is enabled.
References
| Link | Resource |
|---|---|
| https://github.com/canonical/lxd/pull/18585 | Issue Tracking Patch |
| https://github.com/canonical/lxd/security/advisories/GHSA-hhf9-qw4v-72xp | Exploit Vendor Advisory |
| https://github.com/canonical/lxd/security/advisories/GHSA-hhf9-qw4v-72xp | Exploit Vendor Advisory |
Configurations
History
02 Jul 2026, 14:14
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/canonical/lxd/pull/18585 - Issue Tracking, Patch | |
| References | () https://github.com/canonical/lxd/security/advisories/GHSA-hhf9-qw4v-72xp - Exploit, Vendor Advisory | |
| First Time |
Canonical
Canonical lxd |
|
| CPE | cpe:2.3:a:canonical:lxd:*:*:*:*:*:*:*:* |
26 Jun 2026, 17:16
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/canonical/lxd/security/advisories/GHSA-hhf9-qw4v-72xp - |
26 Jun 2026, 16:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-06-26 16:16
Updated : 2026-07-02 14:14
NVD link : CVE-2026-12411
Mitre link : CVE-2026-12411
CVE.ORG link : CVE-2026-12411
JSON object : View
Products Affected
canonical
- lxd
