CVE-2024-11584 | THREATINT

Description

cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.

PUBLISHED Reserved 2024-11-20 | Published 2025-06-26 | Updated 2025-06-26 | Assigner canonical

MEDIUM: 5.9CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Product status

Default status

unaffected

21.3 (semver) before 25.1.3

affected

Credits

Harry Sintonen reporter

References

github.com/...mmits/6e10240a7f0a2d6110b398640b3fd46cfa9a7cf3

github.com/canonical/cloud-init/releases/tag/25.1.3

cve.org (CVE-2024-11584)

nvd.nist.gov (CVE-2024-11584)

Download JSON