CVE-2017-15108

EPSS 0.14%
Published 20.01.2018 00:29:00
Last modified 21.11.2024 03:14:05
Source secalert@redhat.com
Teams watchlist Login
Open Login

spice-vdagent up to and including 0.17.0 does not properly escape save directory before passing to shell, allowing local attacker with access to the session the agent runs in to inject arbitrary commands to be executed.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Spice-space ≫ Spice-vdagent Version <= 0.17.0

Debian ≫ Debian Linux Version9.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.14%	0.352

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://cgit.freedesktop.org/spice/linux/vd_agent/commit/?id=8ba174816d245757e743e636df357910e1d5eb61

Patch

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html

Third Party Advisory

Mailing List

https://security.gentoo.org/glsa/201804-09

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-15108

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-15108

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-15108

EUVD