CVE-2025-54289 | Canonical LXD up to 5.21.3/6.4 Operations API missing origin validation in websockets

A vulnerability labeled as problematic has been found in Canonical LXD up to 5.21.3/6.4. This vulnerability affects unknown code of the component Operations API. Such manipulation leads to missing origin validation in websockets.

This vulnerability is traded as CVE-2025-54289. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More