0.002 Low
EPSS
Percentile
52.2%
Multiple integer overflow and buffer overflow issues were discovered in spice-client’s handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code.
bugzilla.redhat.com/show_bug.cgi?id=1598234
www.cve.org/CVERecord?id=CVE-2018-10893 https://nvd.nist.gov/vuln/detail/CVE-2018-10893