Unauthorized Restart of KVM Virtual Machines Vulnerability in spice-server

Unauthorized Restart of KVM Virtual Machines Vulnerability in spice-server

CVE-2020-23793 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

An issue was discovered in spice-server spice-server-0.14.0-6.el7_6.1.x86_64 of Redhat's VDI product. There is a security vulnerablility that can restart KVMvirtual machine without any authorization. It is not yet known if there will be other other effects.

Learn more about our Cis Benchmark Audit For Red Hat Enterprise Linux.