Every CVE whose affected-product data names Redhat Spice-xpi, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2011-1179 — CVSS 5.1 (medium): The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows remote attackers to cause a denial of service…
CVE-2010-2792 — CVSS 3.3 (low): Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to obtain sensitive information, and conduct…
CVE-2010-2794 — CVSS 3.3 (low): The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files via a symlink attack on an unspecified…
CVE-2011-0012 — CVSS 3.3 (low): The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitrary files via a…