How to fix CVE-2024-11584?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Review and tighten file/resource permissions.

Is Ubuntu affected by CVE-2024-11584?

CVE-2024-11584 presents moderate security risk, a incorrect permissions vulnerability rated CVSS 5.9. Attackers could gain access beyond their authorized level. A patch is available and should be applied during regular vulnerability management.

CVE-2024-11584

EUVD-2024-54980 MEDIUM

2025-06-26 [email protected]

5.9

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 15, 2026 - 23:54 vuln.today

EUVD ID Assigned

Mar 15, 2026 - 23:54 euvd

EUVD-2024-54980

Patch Released

Mar 15, 2026 - 23:54 nvd

Patch available

CVE Published

Jun 26, 2025 - 10:15 nvd

MEDIUM 5.9

Description

cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.

Analysis

Technical Context

This vulnerability is classified as Incorrect Permission Assignment for Critical Resource (CWE-732).

Affected Products

Affected products: Canonical Cloud-Init

Remediation

A vendor patch is available. Apply it as soon as possible and verify the fix.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +30

POC: 0

Vendor Status

Ubuntu

Priority: Medium

cloud-init

Release	Status	Version
xenial	not-affected	-
upstream	released	25.1.3
trusty	DNE	-
oracular	ignored	end of life, was needed
bionic	released	23.1.2-0ubuntu0~18.04.1+esm1
focal	released	24.4.1-0ubuntu0~20.04.3+esm1
jammy	released	25.1.4-0ubuntu0~22.04.1
noble	released	25.1.4-0ubuntu0~24.04.1
plucky	released	25.1.4-0ubuntu0~25.04.1

USN-7677-1

Debian

Bug #1108402

cloud-init

Release	Status	Fixed Version	Urgency
bullseye	vulnerable	20.4.1-2+deb11u1	-
bookworm	fixed	22.4.2-1+deb12u3	-
trixie	fixed	25.1.4-1+deb13u1	-
forky, sid	fixed	25.3-2	-
(unstable)	fixed	25.1.4-1	-

CVE-2024-11584 vulnerability details – vuln.today

Back

CVE-2024-11584

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Ubuntu

Debian

Share

CVE-2024-11584

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Ubuntu

Debian

Share

External POC / Exploit Code