kde

206 tracked vulnerabilities.

CVE-2016-7967 HIGH
KMail < 5.3.0 - Improper Access Control via QWebEngine JavaScript Execution
Dec 23, 2016
CVSS 8.1
EPSS 0.00
CVE-2016-7966 HIGH
KMail < 4.4.0 - HTML Injection via Malicious URL with Quote Character
Dec 23, 2016
CVSS 7.3
EPSS 0.00
CVE-2016-7787 MEDIUM
kde-cli-tools - Command Injection via kdesu Command Line Obfuscation
Dec 23, 2016
CVSS 4.9
EPSS 0.01
CVE-2016-2312 MEDIUM
KDE Plasma-workspace and kscreenlocker - Unauthenticated Screen Unlock Bypass via Screen Off Action
Dec 23, 2016
CVSS 6.8
EPSS 0.00
CVE-2016-6232 HIGH
KArchive <5.24 - Path Traversal
Aug 02, 2016
CVSS 7.5
EPSS 0.06
CVE-2016-3100 HIGH
Opensuse Leap < 5.22.0 - Information Disclosure
Jul 13, 2016
CVSS 8.4
EPSS 0.00
CVE-2015-7543 HIGH
aRts 1.5.10-kdelibs3 3.5.10 - Info Disclosure
Jul 25, 2017
CVSS 7.0
EPSS 0.00
CVE-2015-1308
kde-workspace <5.1.95 - Info Disclosure
Jan 26, 2015
EPSS 0.00
CVE-2015-1307
plasma-workspace <5.1.95 - Info Disclosure
Jan 26, 2015
EPSS 0.00
CVE-2014-8878 MEDIUM
KDE KMail - Unencrypted Attachment Transmission via Automatic Encryption Feature
Sep 28, 2017
CVSS 5.9
EPSS 0.00
CVE-2014-8600
KDE-Runtime < 4.14.2, kwebkitpart < 1.3.3, kio-extras < 5.1.1 - Cross-Site Scripting via Crafted URI Schemes
Dec 08, 2014
EPSS 0.00
CVE-2014-8651
KDE Clock KCM - Privilege Escalation
Dec 06, 2014
EPSS 0.00
CVE-2014-5033
KDE kdelibs < 4.14 and kauth < 5.1 - Local Privilege Escalation via PolkitUnixProcess Race Condition
Aug 19, 2014
EPSS 0.00
CVE-2014-3494
Opensuse - Information Disclosure
Jul 01, 2014
EPSS 0.00
CVE-2013-2213 MEDIUM
KDE Paste Applet >=4.10.5 - Use of a Broken or Risky Cryptographic Algorithm
Feb 11, 2020
CVSS 5.5
EPSS 0.00
CVE-2013-2120 HIGH
KDE Paste Applet < 4.10.5 - Improper Authentication via Password Macro
Feb 11, 2020
CVSS 8.4
EPSS 0.00
CVE-2013-4133 HIGH
kde-workspace < 4.10.5 - Memory Leak in Plasma Desktop
Dec 10, 2019
CVSS 7.5
EPSS 0.02
CVE-2013-7252
KWallet < KDE Apps 14.12.0 - Info Disclosure
Jan 18, 2015
EPSS 0.00
CVE-2013-2074
kdelibs < 4.10.3 - Credential Exposure via HTTP Error Message
Feb 05, 2014
EPSS 0.01
CVE-2013-4132
KDE-Workspace < 4.10.5 - Denial of Service via Invalid Password Handling
Sep 16, 2013
EPSS 0.01
CVE-2012-4512 HIGH
KDE Konqueror - Denial of Service and Memory Disclosure via CSS Font Face Source Type Confusion
Feb 08, 2020
CVSS 8.8
EPSS 0.10
CVE-2012-4515
KDE Konqueror 4.7.3 - Use-After-Free via IFrame Context Menu Access
Nov 11, 2012
EPSS 0.10
CVE-2012-4514
KDE < 4.9.3 - Denial of Service via Null Pointer Dereference in Rendering
Nov 11, 2012
EPSS 0.05
CVE-2012-4513
Konqueror in KDE 4.7.3 - Heap-Based Buffer Over-Read via Large Canvas Dimensions
Nov 11, 2012
EPSS 0.15
CVE-2012-3455
KOffice < 2.3.3 - Heap-Based Buffer Overflow in Microsoft Import Filter
Aug 20, 2012
EPSS 0.07
Products
kde 66 konqueror 33 kde_sc 10 kmail 10 koffice 9 kdelibs 8 kpdf 8 plasma-workspace 7 kdegraphics 6 ark 5 k-mail 5 kde-workspace 4 konqueror_embedded 4 kauth 3 kde_applications 3 kword 3 messagelib 3 KDEConnect 2 kio-extras 2 kmplayer 2 ktexteditor 2 kvt 2 okular 2 paste_applet 2 trojita 2 Arianna 1 Dolphin 1 KCoreAddons 1 KDE Connect information-exchange protocol 1 KDE Connect protocol 1
Quick Filters
Critical CVEs With Exploits In CISA KEV