github.com/lxc/incus/v6 (go) security advisories

CRITICAL 9.9

Go

CVE-2026-33897

Incus vulnerable to arbitrary file read and write through pongo templates

Mar 27, 2026

UNKNOWN

Go

CVE-2026-33711

Incus vulnerable to local privilege escalation through VM screenshot path

Mar 27, 2026

MEDIUM 6.5

Go

CVE-2026-33743

Incus vulnerable to denial of source through crafted bucket backup file

Mar 27, 2026

CRITICAL 9.9

Go

CVE-2026-33945

Incus has an abitrary file write through its systemd-creds options

Mar 27, 2026

UNKNOWN

Go

CVE-2026-33945

Incus has an abitrary file write through its systemd-creds options in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2026-33897

Incus vulnerable to arbitrary file read and write through pongo templates in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2026-33711

Incus vulnerable to local privilege escalation through VM screenshot path in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2026-33898

Local Incus UI web server vulnerable to nuthentication bypass in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2026-33743

Incus vulnerable to denial of source through crafted bucket backup file in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2026-33542

Incus does not verify combined fingerprint when downloading images from simplestreams servers in github.com/lxc/incus

Apr 7, 2026

UNKNOWN

Go

CVE-2025-64507

Incus vulnerable to local privilege escalation through custom storage volumes

Nov 13, 2025

HIGH 8.1

Go

CVE-2025-52890

Incus creates nftables rules that partially bypass security options

Jun 26, 2025

LOW 3.4

Go

CVE-2025-52889

Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks

Jun 26, 2025

HIGH 8.7

Go

CVE-2026-23953

Incus container environment configuration newline injection

Jan 22, 2026

UNKNOWN

Go

CVE-2025-64507

Incus vulnerable to local privilege escalation through custom storage volumes in github.com/lxc/incus

Nov 17, 2025

UNKNOWN

Go

CVE-2025-52889

Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks in github.com/lxc/incus

Jul 28, 2025

UNKNOWN

Go

CVE-2025-52890

Incus creates nftables rules that partially bypass security options in github.com/lxc/incus

Jul 28, 2025

UNKNOWN

Go

CVE-2026-23954

Incus container image templating arbitrary host file read and write in github.com/lxc/incus

Feb 5, 2026

UNKNOWN

Go

CVE-2026-23953

Incus container environment configuration newline injection in github.com/lxc/incus

Feb 5, 2026

github.com/lxc/incus/v6

Vulnerabilities

Incus vulnerable to arbitrary file read and write through pongo templates

Incus vulnerable to local privilege escalation through VM screenshot path

Incus vulnerable to denial of source through crafted bucket backup file

Incus has an abitrary file write through its systemd-creds options

Incus has an abitrary file write through its systemd-creds options in github.com/lxc/incus

Incus vulnerable to arbitrary file read and write through pongo templates in github.com/lxc/incus

Incus vulnerable to local privilege escalation through VM screenshot path in github.com/lxc/incus

Local Incus UI web server vulnerable to nuthentication bypass in github.com/lxc/incus

Incus vulnerable to denial of source through crafted bucket backup file in github.com/lxc/incus

Incus does not verify combined fingerprint when downloading images from simplestreams servers in github.com/lxc/incus

Incus vulnerable to local privilege escalation through custom storage volumes

Incus creates nftables rules that partially bypass security options

Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks

Incus container environment configuration newline injection

Incus vulnerable to local privilege escalation through custom storage volumes in github.com/lxc/incus

Incus Allocation of Resources Without Limits allows firewall rule bypass on managed bridge networks in github.com/lxc/incus

Incus creates nftables rules that partially bypass security options in github.com/lxc/incus

Incus container image templating arbitrary host file read and write in github.com/lxc/incus

Incus container environment configuration newline injection in github.com/lxc/incus

Start Securing