CVE-2016-1581
Published: 31 May 2016
LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecified vectors.
Priority
CVSS 3 base score: 5.5