CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0271 advisory. - Resolves: bz563465 EMBARGOED CVE-2010-0419 kvm: emulator privilege escalation segment selector check rhel-5.5 -...

7.8CVSS5.9AI score0.03518EPSS

Exploits2References3

OpenVAS•added 2023/03/08 12:0 a.m.•25 views

Debian: Security Advisory (DLA-531-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS8.4AI score0.00363EPSS

Exploits0References3

OpenVAS•added 2021/06/11 12:0 a.m.•19 views

SUSE: Security Advisory (SUSE-SU-2021:1927-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.6AI score0.02703EPSS

Exploits1References2

Tenable Nessus•added 2019/02/15 12:0 a.m.•66 views

openSUSE Security Update : spice (openSUSE-2019-176)

This update for spice fixes the following issues : Security issue fixed : - CVE-2019-3813: Fixed a out-of-bounds read in the memslotgetvirt function that could lead to denial-of-service or code-execution bsc1122706. This update was imported from the SUSE:SLE-12-SP3:Update update project...

7.5CVSS6.9AI score0.01208EPSS

Exploits0References2

Veracode•added 2018/09/03 5:28 a.m.•24 views

Demarshalling With Improper Bounds Check

libspice-client-glib-2.0.so, libspice-client-gtk-2.0.so, libspice-client-gtk-3.0.so are vulnerable to demarshalling with improper bounds check. The vulnerability exists due to the lack of check where demarshalling could happen at an item position beyond the message end, leading to a denial of...

8.8CVSS8.3AI score0.03934EPSS

Exploits0References11Affected Software3

Tenable Nessus•added 2017/02/09 12:0 a.m.•43 views

openSUSE Security Update : spice (openSUSE-2017-227)

This security update for spice fixes the following issues : CVE-2016-9577: A buffer overflow in the spice server could have potentially been used by unauthenticated attackers to execute arbitrary code. bsc1023078 CVE-2016-9578: Unauthenticated attackers could have caused a denial of service via a...

8.8CVSS7.8AI score0.03844EPSS

Exploits0References4

securityvulns•added 2015/09/14 12:0 a.m.•63 views

[USN-2736-1] Spice vulnerability

========================================================================== Ubuntu Security Notice USN-2736-1 September 08, 2015 spice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS0.6AI score0.01144EPSS

Exploits0

NVD•added 2013/12/27 1:55 a.m.•32 views

CVE-2010-0430

libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor aka RHEV-H or rhev-hypervisor before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings...

7.4CVSS6.3AI score0.00486EPSS

Exploits0References3