CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-0430

libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.9%

CVSS Severity

CVSS v2 Score 7.4

References

http://rhn.redhat.com/errata/RHSA-2010-0271.html
https://bugzilla.redhat.com/show_bug.cgi?id=568702
https://rhn.redhat.com/errata/RHSA-2010-0476.html
http://rhn.redhat.com/errata/RHSA-2010-0271.html
https://bugzilla.redhat.com/show_bug.cgi?id=568702
https://rhn.redhat.com/errata/RHSA-2010-0476.html

Products affected by CVE-2010-0430

Redhat » Enterprise Virtualization Hypervisor » Version: N/A

cpe:2.3:a:redhat:enterprise_virtualization_hypervisor:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0430

Products

Pricing

Contact Us