I’ve come across an interesting exploit where a compromised host such as Ubuntu 19.04 can use LXD and socket calls to escalate to root privileges. It’s not a complicated attack either so a remote compromise could be worsened by this. The tl;dr here is that you should only give users access to LXD group that you trust and absolutely necessary, but the author states correctly that how SUDO works is better, and that the group may not be necessary at all.
Click Here to visit the author’s blog.