Path Traversal Vulnerability in Spice-VDAgent Affects Red Hat Products
CVE-2026-57966

4.4MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-57966?

A path traversal vulnerability exists in spice-vdagent that can allow an untrusted or compromised SPICE host to write arbitrary files to any location on the guest operating system. The flaw results from failing to properly sanitize the filename provided during file transfers, which can enable an attacker to exploit this vulnerability to write files to sensitive areas, utilizing the privileges of the spice-vdagent process, typically the logged-in user.

References

https://access.redhat.com/security/cve/CVE-2026-57966

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2493582

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
Jun 26, 2026

Credit

Red Hat would like to thank Ashish Kunwar for reporting this issue.

CVE-2026-57966 Data

JSON