CVE-2026-34178: CWE-20 Improper input validation in Canonical lxd
In Canonical LXD before 6.8, the backup import path validates project restrictions against backup/index.yaml in the supplied tar archive but creates the instance from backup/container/backup.yaml, a separate file in the same archive that is never checked against project restrictions. An authenticated remote attacker with instance-creation permission in a restricted project can craft a backup archive where backup.yaml carries restricted settings such as security.privileged=true or raw.lxc directives, bypassing all project restriction enforcement and allowing full host compromise.
AI Analysis
Technical Summary
In Canonical LXD prior to version 6.8, the backup import functionality validates project restrictions against the backup/index.yaml file within a supplied tar archive. However, the actual instance creation uses backup/container/backup.yaml, a separate file in the same archive that is not validated against project restrictions. This discrepancy allows an authenticated remote attacker with instance-creation permission in a restricted project to craft a malicious backup archive where backup.yaml contains restricted settings such as security.privileged=true or raw.lxc directives. Exploiting this flaw bypasses all project restriction enforcement, potentially leading to full host compromise. The vulnerability is tracked as CVE-2026-34178 with a CVSS 3.1 score of 9.1 (critical), reflecting network attack vector, low attack complexity, high privileges required, no user interaction, and complete confidentiality, integrity, and availability impact.
Potential Impact
An attacker with authenticated instance-creation permissions in a restricted project can bypass project restrictions by exploiting improper input validation in the backup import process. This can lead to the creation of instances with elevated privileges or restricted configurations, resulting in full host compromise. The impact is critical, affecting confidentiality, integrity, and availability of the host system running vulnerable LXD versions.
Mitigation Recommendations
Patch status is not yet confirmed — no official fix or patch information is provided in the vendor advisory or other sources. Users should monitor Canonical's official advisories for updates and apply any forthcoming patches promptly. Until a fix is available, restrict instance-creation permissions to trusted users only and avoid importing backups from untrusted sources.
CVE-2026-34178: CWE-20 Improper input validation in Canonical lxd
Description
In Canonical LXD before 6.8, the backup import path validates project restrictions against backup/index.yaml in the supplied tar archive but creates the instance from backup/container/backup.yaml, a separate file in the same archive that is never checked against project restrictions. An authenticated remote attacker with instance-creation permission in a restricted project can craft a backup archive where backup.yaml carries restricted settings such as security.privileged=true or raw.lxc directives, bypassing all project restriction enforcement and allowing full host compromise.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
In Canonical LXD prior to version 6.8, the backup import functionality validates project restrictions against the backup/index.yaml file within a supplied tar archive. However, the actual instance creation uses backup/container/backup.yaml, a separate file in the same archive that is not validated against project restrictions. This discrepancy allows an authenticated remote attacker with instance-creation permission in a restricted project to craft a malicious backup archive where backup.yaml contains restricted settings such as security.privileged=true or raw.lxc directives. Exploiting this flaw bypasses all project restriction enforcement, potentially leading to full host compromise. The vulnerability is tracked as CVE-2026-34178 with a CVSS 3.1 score of 9.1 (critical), reflecting network attack vector, low attack complexity, high privileges required, no user interaction, and complete confidentiality, integrity, and availability impact.
Potential Impact
An attacker with authenticated instance-creation permissions in a restricted project can bypass project restrictions by exploiting improper input validation in the backup import process. This can lead to the creation of instances with elevated privileges or restricted configurations, resulting in full host compromise. The impact is critical, affecting confidentiality, integrity, and availability of the host system running vulnerable LXD versions.
Mitigation Recommendations
Patch status is not yet confirmed — no official fix or patch information is provided in the vendor advisory or other sources. Users should monitor Canonical's official advisories for updates and apply any forthcoming patches promptly. Until a fix is available, restrict instance-creation permissions to trusted users only and avoid importing backups from untrusted sources.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- canonical
- Date Reserved
- 2026-03-26T09:24:08.449Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69d773081cc7ad14da8bdc1f
Added to database: 4/9/2026, 9:36:08 AM
Last enriched: 4/9/2026, 9:50:56 AM
Last updated: 4/9/2026, 1:03:17 PM
Views: 12
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.