cvedb.io
CVE-2015-5225
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-11-06T21:59:05.157 · Last modified 2026-06-17T00:28:42.720

Summary

Buffer overflow in the vnc_refresh_server_surface function in the VNC display driver in QEMU before 2.4.0.1 allows guest users to cause a denial of service (heap memory corruption and process crash) or possibly execute arbitrary code on the host via unspecified vectors, related to refreshing the server display surface.

Affected products

redhat — openstack

Does this affect you?

Add your gear to cvedb and we'll alert you only when redhat ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.