Medium severity5.9NVD Advisory· Published Jun 26, 2025· Updated Jun 17, 2026
CVE-2024-11584
CVE-2024-11584
Description
cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- Range: <=25.1.2
- osv-coords7 versionspkg:rpm/opensuse/cloud-init&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/cloud-init&distro=openSUSE%20Tumbleweedpkg:rpm/suse/cloud-init&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/cloud-init&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/cloud-init&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/cloud-init&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/cloud-init&distro=SUSE%20Linux%20Micro%206.2
< 25.1.3-160000.2.1+ 6 more
- (no CPE)range: < 25.1.3-160000.2.1
- (no CPE)range: < 25.1.3-1.1
- (no CPE)range: < 25.1.3-160000.2.1
- (no CPE)range: < 25.1.3-160000.2.1
- (no CPE)range: < 25.1.3-1.1
- (no CPE)range: < 25.1.3-slfo.1.1_1.1
- (no CPE)range: < 25.1.3-160000.2.1
- Canonical/cloud-initv5Range: 21.3
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.