VYPR
High severityNVD Advisory· Published Oct 2, 2025· Updated Oct 2, 2025

Path Traversal in LXD Instance Log File Retrieval

CVE-2025-54293

Description

Path Traversal in the log file retrieval function in Canonical LXD 5.0 LTS on Linux allows authenticated remote attackers to read arbitrary files on the host system via crafted log file names or symbolic links.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/canonical/lxdGo
>= 4.0, < 5.21.45.21.4
github.com/canonical/lxdGo
>= 6.0, < 6.56.5
github.com/canonical/lxdGo
>= 0.0.0-20200331193331-03aab09f5b5c, < 0.0.0-20250224180022-ec09b24179f30.0.0-20250224180022-ec09b24179f3

Affected products

3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.