Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde plasma vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2013-4133
kde-workspace prior to 4.10.5 has a memory leak in plasma desktop
Kde Kde-workspace
Debian Debian Linux 8.0
7.2
CVSSv2
CVE-2018-10380
kwallet-pam in KDE KWallet prior to 5.12.6 allows local users to obtain ownership of arbitrary files via a symlink attack.
Kde Plasma
Debian Debian Linux 9.0
Opensuse Leap 15.0
Opensuse Leap 42.3
7.2
CVSSv2
CVE-2018-6791
An issue exists in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace prior to 5.12.0. When a vfat thumbdrive that contains `` or $() in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possi...
Kde Plasma-workspace
Debian Debian Linux 9.0
1 Article
7.2
CVSSv2
CVE-2014-8651
The KDE Clock KCM policykit helper in kde-workspace prior to 4.11.14 and plasma-desktop prior to 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument.
Kde Plasma-desktop
Kde Kde-workspace
5
CVSSv2
CVE-2018-6790
An issue exists in KDE Plasma Workspace prior to 5.12.0. dataengines/notifications/notificationsengine.cpp allows remote malicious users to discover client IP addresses via a URL in a notification, as demonstrated by the src attribute of an IMG element.
Kde Plasma-workspace
4.6
CVSSv2
CVE-2016-2312
Turning all screens off in Plasma-workspace and kscreenlocker while the lock screen is shown can result in the screen being unlocked when turning a screen on again.
Kde Kscreenlocker
Kde Plasma-workspace
Fedoraproject Fedora 22
Opensuse Leap 42.1
Fedoraproject Fedora 23
4.6
CVSSv2
CVE-2015-0856
daemon/Greeter.cpp in sddm prior to 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme.
Fedoraproject Fedora 22
Sddm Project Sddm
4.3
CVSSv2
CVE-2015-1308
kde-workspace 4.2.0 and plasma-workspace prior to 5.1.95 allows remote malicious users to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locked.
Kde Plasma-workspace
Kde Kde-workspace
4.3
CVSSv2
CVE-2015-1307
plasma-workspace prior to 5.1.95 allows remote malicious users to obtain passwords via a Trojan horse Look and Feel package.
Kde Plasma-workspace
NA
CVE-2024-26911
In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Fix alloc_range() error handling code Few users have observed display corruption when they boot the machine to KDE Plasma or playing games. We have root caused the problem that whenever alloc_range() c...
Linux Linux Kernel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »