Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde plasma vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-1308
kde-workspace 4.2.0 and plasma-workspace prior to 5.1.95 allows remote malicious users to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locked.
Kde Plasma-workspace
Kde Kde-workspace
7.2
CVSSv2
CVE-2014-8651
The KDE Clock KCM policykit helper in kde-workspace prior to 4.11.14 and plasma-desktop prior to 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument.
Kde Plasma-desktop
Kde Kde-workspace
5
CVSSv2
CVE-2018-6790
An issue exists in KDE Plasma Workspace prior to 5.12.0. dataengines/notifications/notificationsengine.cpp allows remote malicious users to discover client IP addresses via a URL in a notification, as demonstrated by the src attribute of an IMG element.
Kde Plasma-workspace
4.3
CVSSv2
CVE-2015-1307
plasma-workspace prior to 5.1.95 allows remote malicious users to obtain passwords via a Trojan horse Look and Feel package.
Kde Plasma-workspace
7.2
CVSSv2
CVE-2018-6791
An issue exists in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace prior to 5.12.0. When a vfat thumbdrive that contains `` or $() in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possi...
Kde Plasma-workspace
Debian Debian Linux 9.0
1 Article
4.6
CVSSv2
CVE-2016-2312
Turning all screens off in Plasma-workspace and kscreenlocker while the lock screen is shown can result in the screen being unlocked when turning a screen on again.
Kde Kscreenlocker
Kde Plasma-workspace
Fedoraproject Fedora 22
Opensuse Leap 42.1
Fedoraproject Fedora 23
7.2
CVSSv2
CVE-2018-10380
kwallet-pam in KDE KWallet prior to 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack.
Kde Plasma
Debian Debian Linux 9.0
Opensuse Leap 15.0
Opensuse Leap 42.3
7.8
CVSSv2
CVE-2013-4133
kde-workspace prior to 4.10.5 has a memory leak in plasma desktop
Kde Kde-workspace
Debian Debian Linux 8.0
NA
CVE-2024-1433
A vulnerability, which was classified as problematic, was found in KDE Plasma Workspace up to 5.93.0. This affects the function EventPluginsManager::enabledPlugins of the file components/calendar/eventpluginsmanager.cpp of the component Theme File Handler. The manipulation of the...
4.6
CVSSv2
CVE-2015-0856
daemon/Greeter.cpp in sddm prior to 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme.
Fedoraproject Fedora 22
Sddm Project Sddm
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »