Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-20201

EPSS 0.73% · P73
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-20201

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a single connection.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
spice 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
spice是一个企业虚拟化桌面版所使用的自适应远程呈现开源协议。该产品主要用于将用户与其虚拟桌面进行连接,能够提供与物理桌面完全相同的最终用户体验。 spice 存在安全漏洞,该漏洞源于客户端发起重新协商拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-spice spice 0.14.92 -

II. Public POCs for CVE-2021-20201

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2021-20201

登录查看更多情报信息。

Same Patch Batch · n/a · 2021-05-28 · 43 CVEs total

CVE-2021-336206.5 MEDIUMSquid 输入验证错误漏洞
CVE-2021-20195Red Hat Keycloak 输入验证错误漏洞
CVE-2020-35506QEMU 资源管理错误漏洞
CVE-2020-35504QEMU 代码问题漏洞
CVE-2010-3843Ettercap 缓冲区错误漏洞
CVE-2020-27847Dex Idp Dex 安全漏洞
CVE-2020-25710OpenLDAP 安全漏洞
CVE-2021-3514389-ds-base 代码问题漏洞
CVE-2021-33587css-what 安全漏洞
CVE-2021-33623trim-newlines 资源管理错误漏洞
CVE-2020-25715pki-core 跨站脚本漏洞
CVE-2020-35505QEMU 代码问题漏洞
CVE-2021-20236ZeroMQ 缓冲区错误漏洞
CVE-2021-20237ZeroMQ 资源管理错误漏洞
CVE-2021-20239Linux kernel 缓冲区错误漏洞
CVE-2021-20240gdk-pixbuf 数字错误漏洞
CVE-2021-20278Kiali 授权问题漏洞
CVE-2021-20292Nouveau 资源管理错误漏洞
CVE-2021-27032Autodesk Licensing Services 访问控制错误漏洞
CVE-2021-21734ZTE PON MDU 加密问题漏洞

Showing top 20 of 43 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: spice
Same vendor: n/a
Same weakness: CWE-400

V. Comments for CVE-2021-20201

No comments yet

Leave a comment