What is CVE-2025-54286?

CVE-2025-54286 is a vulnerability in Canonical Lxd, classified under Cross-Site Request Forgery (CSRF). Published 2025-10-02.

Is CVE-2025-54286 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

CSRF in Canonical Lxd

CVE-2025-54286

Cross-Site Request Forgery (CSRF) in LXD-UI in Canonical LXD versions >= 5.0 on Linux allows an attacker to create and start container instances without user consent via crafted HTML form submissions exploiting client certificate authentic…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.000 (7.1th percentile) — read the EPSS interpretation.

Affected products

Canonical Lxd — versions 5.0, 5.21, 6.0

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

github.com/canonical/lxd/security/advisories/GHSA-p8hw-rfjg-689h

Frequently asked questions

What is CVE-2025-54286?: CVE-2025-54286 is a vulnerability in Canonical Lxd, classified under Cross-Site Request Forgery (CSRF). Published 2025-10-02.
Is CVE-2025-54286 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.