Vulnerability Details CVE-2017-15108
spice-vdagent up to and including 0.17.0 does not properly escape save directory before passing to shell, allowing local attacker with access to the session the agent runs in to inject arbitrary commands to be executed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
- https://cgit.freedesktop.org/spice/linux/vd_agent/commit/?id=8ba174816d245757e743e636df357910e1d5eb61
- https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html
- https://security.gentoo.org/glsa/201804-09
- https://cgit.freedesktop.org/spice/linux/vd_agent/commit/?id=8ba174816d245757e743e636df357910e1d5eb61
- https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html
- https://security.gentoo.org/glsa/201804-09
Products affected by CVE-2017-15108
-
cpe:2.3:a:spice-space:spice-vdagent:0.17.0
-
cpe:2.3:o:debian:debian_linux:9.0