spice-vdagent (SUSE:Linux Enterprise Server 12 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP5 package spice-vdagent, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2020-25651 — CVSS 6.4 (medium): A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client…
CVE-2020-25653 — CVSS 6.3 (medium): A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an…
CVE-2020-25650 — CVSS 5.5 (medium): A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged…
CVE-2020-25652 — CVSS 5.5 (medium): A flaw was found in the spice-vdagentd daemon, where it did not properly handle client connections that can be established via the UNIX…