GHSA-gg66-359m-pmcc · Severity: medium — A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or...
A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not properly sanitized before being used. An attacker could exploit this to write to sensitive locations with the privileges of the spice-vdagent process, typically the logged-in user. This issue requires the SPICE host to be untrusted or compromised for exploitation.
Conclusion & alert: CVE-2026-57966 is rated Low Risk (18.8/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.14%). Mandatory action: Low composite risk—no urgent action required; patch on your normal maintenance cycle and revisit priority if CVSS or EPSS increases.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-29 | — | 0.14% | — |
Full EPSS history (1 record total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 4.4 | 3.1 | MEDIUM |
|
0.8 | 3.6 | [email protected] |
GHSA-gg66-359m-pmcc · Severity: medium — A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or...
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
not yet assigned | CVE-2026-57966 not yet assigned priority: Debian including 1 source packages (spice-vdagent), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): open 5. | https://security-tracker.debian.org/tracker/CVE-2026-57966 |
suse
|
high | — | https://www.suse.com/security/cve/CVE-2026-57966/ |
ubuntu
|
medium | CVE-2026-57966 medium priority: Ubuntu including 1 source packages (spice-vdagent), 7 status rows across 7 suites (bionic, focal, jammy, noble, questing, resolute, upstream): needs-triage 7. | https://ubuntu.com/security/CVE-2026-57966 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| redhat | enterprise_linux | 6.0 | cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 7.0 | cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 8.0 | cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 9.0 | cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 10.0 | cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:* |
| spice-space | spice-vdagent | — | cpe:2.3:a:spice-space:spice-vdagent:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-57966 | Vendor Advisory |
| https://bugzilla.redhat.com/show_bug.cgi?id=2493582 | Issue Tracking Vendor Advisory |