permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine.
Metrics
Affected Vendors & Products
| Source | ID | Title |
|---|---|---|
Debian DSA |
DSA-6027-1 | incus security update |
Debian DSA |
DSA-6028-1 | lxd security update |
EUVD |
EUVD-2025-32098 | Template Injection in instance snapshot creation component in Canonical LXD (>= 4.0) allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine. |
Github GHSA |
GHSA-w2hg-2v4p-vmh6 | Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns |
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 22 Oct 2025 15:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Linux
Linux linux Kernel |
|
| CPEs | cpe:2.3:a:canonical:lxd:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
|
| Vendors & Products |
Linux
Linux linux Kernel |
|
| Metrics |
cvssV3_1
|
Fri, 03 Oct 2025 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Canonical
Canonical lxd |
|
| Vendors & Products |
Canonical
Canonical lxd |
Thu, 02 Oct 2025 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 02 Oct 2025 09:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Template Injection in instance snapshot creation component in Canonical LXD (>= 4.0) allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine. | |
| Title | Arbitrary File Read via Template Injection in Snapshot Patterns | |
| Weaknesses | CWE-1336 | |
| References |
| |
| Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: canonical
Published:
Updated: 2025-10-02T13:27:42.957Z
Reserved: 2025-07-18T07:59:07.917Z
Link: CVE-2025-54287
Updated: 2025-10-02T13:27:31.810Z
Status : Analyzed
Published: 2025-10-02T10:15:38.707
Modified: 2025-10-22T15:39:01.910
Link: CVE-2025-54287
No data.
OpenCVE Enrichment
Updated: 2025-10-03T08:22:50Z
Debian DSA
EUVD
Github GHSA