Advisory ROSA-SA-2021-1974
Software: vdagent spices 0.14.0 OS: Cobalt 7.9 CVE-ID: CVE-2017-15108 CVE-Crit: HIGH CVE-DESC: spices vdagent up to 0.17.0 in a way that does not avoid saving the directory before going to the shell, allowing an attacker with access to the session running the agent to inject arbitrary commands to...