A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted, resulting in a denial of service. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior.
Conclusion & alert: CVE-2020-25651 is rated Exploit Available (50/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.29%). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.11% | 0.29% | +0.17% |
| 2 | 2025-03-30 | 0.19% | 0.11% | -0.07% |
| 3 | 2025-03-29 | — | 0.19% | — |
Full EPSS history (9 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 6.4 | 3.1 | MEDIUM |
|
1.1 | 4.7 | [email protected] |
| 3.3 | 2.0 | LOW |
|
3.4 | 4.9 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
not yet assigned | CVE-2020-25651 not yet assigned priority: Debian including 1 source packages (spice-vdagent), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. | https://security-tracker.debian.org/tracker/CVE-2020-25651 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2020-25651 |
suse
|
medium | CVE-2020-25651 severity moderate: SUSE including 8 source package names (spice-vdagent-0.16.0-8.8.2, spice-vdagent-0.17.0-4.3.1, …), 28 product×package rows across 28 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, … (28 product lines)): Fixed 28. | https://www.suse.com/security/cve/CVE-2020-25651/ |
ubuntu
|
low | CVE-2020-25651 low priority: Ubuntu including 1 source packages (spice-vdagent), 16 status rows across 16 suites (bionic, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): released 13, DNE 1, needed 1, needs-triage 1. | https://ubuntu.com/security/CVE-2020-25651 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| spice-space | spice-vdagent | <= 0.20.0 | cpe:2.3:a:spice-space:spice-vdagent:*:*:*:*:*:*:*:* |
| debian | debian_linux | 9.0 | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
| fedoraproject | fedora | 32 | cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
| fedoraproject | fedora | 33 | cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=1886359 | Issue Tracking Patch Third Party Advisory |
| https://lists.debian.org/debian-lts-announce/2021/01/msg00012.html | Mailing List Third Party Advisory |
| https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GQT56LATVTB2DJOVVJOKQVMVUXYCT2VB/ | |
| https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OIWJ2EIQXWEA2VDBODEATHAT37X4CREP/ | |
| https://www.openwall.com/lists/oss-security/2020/11/04/1 | Exploit Mailing List Third Party Advisory |