github.com/lxc/incus/v6
Go5 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting github.com/lxc/incus/v6page 1 of 1
- CVE-2025-52889LOWCVSS 3.4EG 3.4✓ Fixed in 6.14.02025-06-25
Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge, Incus version 6.12 and 6.13 generates nftables rules for local services (DHCP, DNS...) that partially bypass security options `se…
- CVE-2025-52890HIGHCVSS 8.1EG 8.1✓ Fixed in 6.14.02025-06-25
Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge, Incus versions 6.12 and 6.13generates nftables rules that partially bypass security options `security.mac_filtering`, `security.i…
- CVE-2025-64507HIGHCVSS 7.8EG 7.82025-11-10
Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage…
- CVE-2026-23953HIGHCVSS 8.7EG 8.72026-01-22
Incus is a system container and virtual machine manager. In versions 6.20.0 and below, a user with the ability to launch a container with a custom YAML configuration (e.g a member of the ‘incus’ group) can create an environment variabl…
- CVE-2026-23954HIGHCVSS 8.7EG 8.72026-01-22
Incus is a system container and virtual machine manager. Versions 6.21.0 and below allow a user with the ability to launch a container with a custom image (e.g a member of the ‘incus’ group) to use directory traversal or symbolic links…
Check whether github.com/lxc/incus/v6 is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/lxc/incus/v6 CVEs against the assets you own.
Start Free Scan →