vulnerability
Oracle Linux: CVE-2016-2150: ELSA-2016-1205: spice security update (IMPORTANT) (Multiple Advisories)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
6 | (AV:L/AC:L/Au:S/C:C/I:C/A:N) | Jun 6, 2016 | Jun 6, 2016 | Dec 6, 2024 |
Severity
6
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:N)
Published
Jun 6, 2016
Added
Jun 6, 2016
Modified
Dec 6, 2024
Description
SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261.
Solution(s)
oracle-linux-upgrade-spice-serveroracle-linux-upgrade-spice-server-devel

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.