CVE-2024-6174

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this,cloud-init default configurations disable platform enumeration.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
canonicalCNA
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
VendorProductVersion
canonicalcloud-init
𝑥
< 25.1.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cloud-init
bullseye
postponed
bookworm
22.4.2-1+deb12u3
fixed
trixie
25.1.4-1
fixed
forky
25.2-1
fixed
sid
25.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cloud-init
plucky
Fixed 25.1.4-0ubuntu0~25.04.1
released
oracular
ignored
noble
Fixed 25.1.4-0ubuntu0~24.04.1
released
mantic
ignored
jammy
Fixed 25.1.4-0ubuntu0~22.04.1
released
focal
Fixed 24.4.1-0ubuntu0~20.04.3+esm1
released
bionic
Fixed 23.1.2-0ubuntu0~18.04.1+esm1
released
xenial
Fixed 21.1-19-gbad84ad4-0ubuntu1~16.04.4+esm2
released
trusty
dne
Common Weakness Enumeration
References
https://github.com/canonical/cloud-init/releases/tag/25.1.3