CVE-2024-11584

Name
CVE-2024-11584
Description
cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
security@ubuntu.com https://github.com/canonical/cloud-init/pull/6265/commits/6e10240a7f0a2d6110b398640b3fd46cfa9a7cf3
security@ubuntu.com https://github.com/canonical/cloud-init/releases/tag/25.1.3

Match rules

CPE URI Source package Min version Max version
cloud-init >= 21.3 < 25.1.3
cpe:2.3:a:canonical:cloud-init:*:*:*:*:*:*:*:* cloud-init >= None < 25.1.3

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
cloud-init edge-community 24.3.1-r3 Achill Gilgenast <achill@achill.org> possibly vulnerable
cloud-init edge-community 24.3.1-r2 fossdd <fossdd@pwned.life> possibly vulnerable
cloud-init edge-community 24.3.1-r1 fossdd <fossdd@pwned.life> possibly vulnerable
cloud-init edge-community 24.3.1-r0 None possibly vulnerable
cloud-init edge-community 23.1.2-r0 Dermot Bradley <dermot_bradley@yahoo.com> possibly vulnerable
cloud-init edge-community 22.2.2-r0 Dermot Bradley <dermot_bradley@yahoo.com> possibly vulnerable
cloud-init edge-community 21.1-r1 None possibly vulnerable
cloud-init 3.22-community 24.3.1-r2 fossdd <fossdd@pwned.life> possibly vulnerable
cloud-init 3.22-community 24.3.1-r0 None possibly vulnerable
cloud-init 3.22-community 23.1.2-r0 None possibly vulnerable
cloud-init 3.22-community 22.2.2-r0 None possibly vulnerable
cloud-init 3.22-community 21.1-r1 None possibly vulnerable