Spice Project » Spice : Security Vulnerabilities, CVEs, CVSS score >= 8
Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code.
Max CVSS
8.8
EPSS Score
0.22%
Published
2018-09-11
Updated
2023-02-12
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially, other impacts.
Max CVSS
8.8
EPSS Score
0.18%
Published
2018-08-17
Updated
2019-10-09
spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.
Max CVSS
8.8
EPSS Score
0.29%
Published
2017-07-18
Updated
2023-02-12
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An authenticated attacker could send crafted messages to the SPICE server causing a heap overflow leading to a crash or possible code execution.
Max CVSS
8.8
EPSS Score
1.87%
Published
2018-07-27
Updated
2019-10-09
The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code via vectors related to connecting to a guest VM, which triggers a heap-based buffer overflow.
Max CVSS
10.0
EPSS Score
3.65%
Published
2016-06-09
Updated
2023-02-12
5 vulnerabilities found