CVE-2026-34179

Published April 9, 2026 · Updated April 9, 2026

9.1CVSS

critical

What This Means

CVE-2026-34179 is a critical privilege escalation vulnerability in Canonical LXD versions 4.12 through 6.7. The flaw in the `doCertificateUpdate` function allows an authenticated remote attacker to manipulate TLS certificate requests, potentially gaining cluster admin rights. Security teams should immediately apply available patches or update to a secured version of LXD to mitigate this risk.

Official Description+

In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/{fingerprint} for restricted TLS certificate users, allowing a remote authenticated attacker to escalate privileges to cluster admin.

Recommended Actions

Check if your systems use any of the affected products listed above.
Apply vendor patches immediately if available.
Monitor vendor advisories for updates and additional mitigations.
Review logs for indicators of compromise related to CVE-2026-34179.

Related Coverage

Vvulnerability

🚨 Critical Privilege Escalation Flaw in Canonical LXD: CVE-2026-34179

CVE-2026-34179 is a critical vulnerability in Canonical LXD versions 4.12-6.7. It allows privilege escalation by exploiting faulty certificate validation. Immediate patching is advised.

NVD·7h ago·3 min read