World-writable Permissions in Canonical Cloud-Init Installation
CVE-2024-11584

5.9MEDIUM

Key Information:

Vendor: Canonical
Status: Cloud-init
Vendor: CVE Published:; 26 June 2025

What is CVE-2024-11584?

The Canonical Cloud-Init version 25.1.2 contains a vulnerability related to the default permissions set for the systemd socket unit cloud-init-hotplugd.socket. These permissions, set to 0666, allow any user on the system to write to the socket, enabling unprivileged users to execute hotplug-hook commands through the insecure FIFO located at '/run/cloud-init/hook-hotplug-cmd'. This poses a risk of unauthorized access and potential exploitation, making it essential for users to apply the latest updates to mitigate this issue.

Affected Version(s)

cloud-init Linux 21.3 < 25.1.3

References

https://github.com/canonical/cloud-init/pull/6265/commits...

https://github.com/canonical/cloud-init/releases/tag/25.1.3

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 26, 2025
Vulnerability Reserved
Nov 20, 2024

Credit

Harry Sintonen

JSON