CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
20.8%
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
redhat | enterprise_virtualization | 2.2 | cpe:2.3:a:redhat:enterprise_virtualization:2.2:*:*:*:*:*:*:* |
redhat | qspice | 0.3.0 | cpe:2.3:a:redhat:qspice:0.3.0:*:*:*:*:*:*:* |