FLAT-RY9IL (CVE-2026-41648)
Inadequate file size control In lxd
3.8
Low
Ecosystem: Debian
Package: lxd
FLAT-1XEK2 (CVE-2026-40251)
Lack of data validation - Path Traversal In lxd
4.9
Medium
Ecosystem: Debian
Package: lxd
FLAT-H4S7Y (CVE-2026-34177)
Lack of data validation In github.com/canonical/lxd
6.1
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-B1DFT (CVE-2026-34178)
Lack of data validation In github.com/canonical/lxd
6.1
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-Q7C57 (CVE-2026-34179)
Authentication mechanism absence or evasion In github.com/canonical/lxd
6.1
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-YWA2T (DSA-6188-1)
Supply Chain Attack - Lock Files In lxd
0.6
Low
Ecosystem: Debian
Package: lxd
FLAT-QG3FJ (CVE-2026-28384)
OS Command Injection In lxd
7.7
High
Ecosystem: Debian
Package: lxd
FLAT-F74BZ (CVE-2026-3351)
Improper authorization control for web services In github.com/canonical/lxd
1.3
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-5D7C5 (DSA-6153-1)
Supply Chain Attack - Lock Files In lxd
0.6
Low
Ecosystem: Debian
Package: lxd
FLAT-LH52K (GHSA-3g2j-vm47-x4mj)
Excessive privileges In github.com/canonical/lxd
6.1
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-056RV (DSA-6057-1)
Supply Chain Attack - Lock Files In lxd
0.6
Low
Ecosystem: Debian
Package: lxd
FLAT-6JAEL (CVE-2025-54287)
Server side template injection In github.com/lxc/lxd/v6
4.9
Medium
Ecosystem: Go
Package: github.com/lxc/lxd/v6
FLAT-DQAX5 (DSA-6028-1)
Supply Chain Attack - Lock Files In lxd
0.6
Low
Ecosystem: Debian
Package: lxd
FLAT-PDBT5 (CVE-2025-54286)
Cross-site request forgery In github.com/canonical/lxd
4.8
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-OSBJV (CVE-2025-54288)
Spoofing In github.com/canonical/lxd
1.2
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-HTVP2 (CVE-2025-54289)
Lack of data validation In github.com/canonical/lxd
4.5
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-D09GF (CVE-2025-54290)
Business information leak In github.com/canonical/lxd
2.7
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-T99VZ (CVE-2025-54293)
Lack of data validation - Path Traversal In github.com/canonical/lxd
4.9
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-F4305 (CVE-2025-54291)
Technical information leak In github.com/canonical/lxd
2.7
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-QT2UF (CVE-2024-6156)
Insecure digital certificates In github.com/canonical/lxd
1.1
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-PUO3N (CVE-2024-6219)
Improper authorization control for web services In github.com/canonical/lxd
1.1
Low
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-54ZEU (GHSA-x9qq-236j-gj97)
Excessive privileges In github.com/canonical/lxd
5.8
Medium
Ecosystem: Go
Package: github.com/canonical/lxd
FLAT-FHESC (MAL-2023-2475)
Use of software with malware In pyautodllxd
5.2
Medium
Ecosystem: Npm
Package: pyautodllxd
FLAT-O1S0G (CVE-2021-40494)
Sensitive information in source code In lxdui
8.1
High
Ecosystem: PyPI
Package: lxdui
FLAT-D0TOH (CVE-2015-1340)
Race condition In github.com/lxc/lxd
7.2
High
Ecosystem: Go
Package: github.com/lxc/lxd
FLAT-ULZLX (CVE-2017-5936)
Security controls bypass or absence In nova-lxd
6.6
Medium
Ecosystem: PyPI
Package: nova-lxd
FLAT-LTQWV (CVE-2015-8308)
Authentication mechanism absence or evasion In lxdm
5.9
Medium
Ecosystem: Debian
Package: lxdm