Vulnerabilities (CVE)

Vendor filter

Spice Project Subscribe

Product filter

Spice Subscribe


1 total CVE
CVE Vendors Products Updated CVSS
CVE-2016-0749 5 Debian, Spice Project, Novell and 2 more 13 Leap, Debian Linux, Enterprise Linux Desktop and 10 more 2019-04-22 10.0
The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code via vectors related to connecting to a guest VM, which triggers a heap-based buffer overflow.