Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-3769

Malware in sbrugna...

10CVSS9.2AI score0.05544EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.28 views

NewStart CGSL MAIN 6.02 : spice-gtk Vulnerability (NS-SA-2021-0075)

The remote NewStart CGSL host, running version MAIN 6.02, has spice-gtk packages installed that are affected by a vulnerability: - Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE clien...

6.6CVSS7.6AI score0.02656EPSS
Exploits0References2
Veracode
Veracode
added 2019/01/15 8:59 a.m.25 views

Authorization Bypass

spice-gtk is vulnerable to authorization bypass. The communication to polkit for authorization via an API call is vulnerable to a race condition in setuid or pkexec process, which allows a local user to bypass access restrictions...

4.6CVSS5.8AI score0.00384EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2018/03/14 9:29 p.m.4 views

CVE-2017-12194

A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are...

9.8CVSS9.6AI score
Exploits0References4
Prion
Prion
added 2018/03/14 9:29 p.m.20 views

Design/Logic Flaw

A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are...

10CVSS9.5AI score0.05544EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder