Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0436
Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 up to and including 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contains a control socke...
Kde Kde Sc 4.3.4
Kde Kde Sc 4.3.0
Kde Kde Sc 4.2.2
Kde Kde Sc 4.4.1
Kde Kde Sc 4.3.5
Kde Kde Sc 4.3.1
Kde Kde Sc 4.4.0
Kde Kde Sc 4.4.2
Kde Kde Sc 4.1.2
Kde Kde Sc 3.5.10
Kde Kde Sc 2.2.0
NA
CVE-2008-1671
start_kdeinit in KDE 3.5.5 up to and including 3.5.9, when installed setuid root, allows local users to cause a denial of service and possibly execute arbitrary code via "user-influenceable input" (probably command-line arguments) that cause start_kdeinit to send SIGUSR...
Kde Kde 3.5.7
Kde Kde 3.5.8
Kde Kde 3.5.5
Kde Kde 3.5.6
Kde Kde 3.5.9
NA
CVE-2007-0104
The Adobe PDF specification 1.3, as implemented by (a) xpdf 3.0.1 patch 2, (b) kpdf in KDE prior to 3.5.5, (c) poppler prior to 0.5.4, and other products, allows remote malicious users to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code...
Xpdf Xpdf 3.0 Pl2
Xpdf Xpdf 3.0
Xpdf Xpdf 3.0.1
Xpdf Xpdf 3.0.1 Pl1
Xpdf Xpdf 3.0.1 Pl2
Kde Kde 3.2
Kde Kde 3.4
Kde Kde 3.4.1
Kde Kde 3.2.3
Kde Kde 3.3
Kde Kde 3.5
Kde Kde 3.2.1
Kde Kde 3.2.2
Kde Kde 3.4.2
Kde Kde 3.4.3
Kde Kde 3.3.1
Kde Kde 3.3.2
NA
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
NA
CVE-2005-0205
KPPP 2.1.2 in KDE 3.1.5 and previous versions, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to /etc/hosts and /etc/resolv.conf and gain control over DNS name resolut...
Kde Kde 3.1.1
Kde Kde 3.1.2
Bernd Wuebben Kppp 2.1.2
Kde Kde 3.1
Kde Kde 3.1.3
Kde Kde 3.1.4
Kde Kde 3.1.5
NA
CVE-2002-1151
The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 up to and including 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote malicious users to execute script and steal cookies from subframes that are in other dom...
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.0.3
Kde Konqueror 3.0.1
Kde Konqueror 3.0.2
Kde Kde 2.2.2
Kde Kde 3.0
Kde Kde 3.0.1
Kde Kde 3.0.2
Kde Kde 3.0.3
NA
CVE-2002-1224
Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote malicious users to read arbitrary files as the kpf user via a URL with a modified icon parameter.
Kde Kde 3.0.1
Kde Kde 3.0.3
Kde Kde 3.0.2
Kde Kde 3.0.3a
1 EDB exploit
NA
CVE-2000-0393
The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.
Kde Kde 1.1
Kde Kde 1.1.1
Kde Kde 1.2
Kde Kde 2.0 Beta
1 EDB exploit
NA
CVE-2008-1670
Heap-based buffer overflow in the progressive PNG Image loader (decoders/pngloader.cpp) in KHTML in KDE 4.0.x up to 4.0.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted image.
Kde Kde 4.0.0
Kde Kde 4.0.3
Kde Kde 4.0.1
Kde Kde 4.0.2
NA
CVE-2003-0988
Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 up to and including 3.1.4 allows malicious users to execute arbitrary code via a VCF file.
Kde Kde 3.1.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »