CVE-2016-2150 in SPICEinfo

Summary

SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/29/2016

Disclosure

06/09/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

8.5

EPSS

0.00073

CTI

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2150
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2150
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2150/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!