Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0460
Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.
Kde Kde 1.1
Kde Kde 1.1.1
Kde Kde 1.1.2
Kde Kde 1.2
1 EDB exploit
NA
CVE-2002-0970
The SSL capability for Konqueror in KDE 3.0.2 and previous versions does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote malicious users to spoof the certificates of trusted sites via a man-in-the-middle attack.
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.0.2
Kde Kde 3.0.1
Kde Kde 3.0.2
Kde Kde 2.2.2
Kde Kde 3.0
NA
CVE-2002-1152
Konqueror in KDE 3.0 up to and including 3.0.2 does not properly detect the "secure" flag in an HTTP cookie, which could cause Konqueror to send the cookie across an unencrypted channel, which could allow remote malicious users to steal the cookie via sniffing.
Kde Kde 3.0.1
Kde Kde 3.0.2
Kde Kde 3.0
NA
CVE-2005-0011
Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distributed Interface (INDI) in KDE 3.3 to 3.3.2, allow local users and remote malicious users to execute arbitrary code via stack-based buffer overflows.
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.3
NA
CVE-2010-1511
KGet 2.4.2 in KDE SC 4.0.0 up to and including 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote malicious users to overwrite arbitrary files via a crafted metalink file.
Kde Kget 2.4.2
Kde Kde Sc 4.3.5
Kde Kde Sc 4.3.4
Kde Kde Sc 4.0.1
Kde Kde Sc 2.2.0
Kde Kde Sc 4.1.0
Kde Kde Sc 4.1.80
Kde Kde Sc 4.4.3
Kde Kde Sc 4.2.3
Kde Kde Sc 4.1.1
Kde Kde Sc 4.4.0
Kde Kde Sc 3.5.10
Kde Kde Sc 4.4.1
Kde Kde Sc 4.0.0
Kde Kde Sc 4.1.96
Kde Kde Sc 4.1.85
Kde Kde Sc 4.2.1
Kde Kde Sc 4.2.0
Kde Kde Sc 4.2.4
Kde Kde Sc 4.4.2
Kde Kde Sc 4.3.0
Kde Kde Sc 4.2.2
NA
CVE-2006-3672
KDE Konqueror 3.5.1 and previous versions allows remote malicious users to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argumen...
Kde Konqueror 3.0.2
Kde Konqueror 3.0.3
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Kde Konqueror
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.2
Kde Konqueror 3.2.2.6
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.3.1
Kde Konqueror 3.3.2
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 3.1.2
1 EDB exploit
NA
CVE-2005-0754
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote malicious users to execute arbitrary code.
Kde Quanta 3.1
Conectiva Linux 10.0
Conectiva Linux 9.0
Kde Kde 3.2.1
Kde Kde 3.2.2
Ubuntu Ubuntu Linux 4.1
Ubuntu Ubuntu Linux 5.04
Kde Kde 3.2.3
Kde Kde 3.3
Gentoo Linux
Kde Kde 3.2
Redhat Fedora Core Core 3.0
Kde Kde 3.3.1
Kde Kde 3.3.2
Kde Kde 3.4
NA
CVE-2004-1171
KDE 3.2.x and 3.3.0 up to and including 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .desktop file, which may be created with world-readable permissio...
Kde Kde 3.3
Kde Kde 3.3.1
Redhat Fedora Core Core 3.0
Kde Kde 3.3.2
Mandrakesoft Mandrake Linux 10.0
Kde Kde 3.2
Kde Kde 3.2.1
Mandrakesoft Mandrake Linux 10.1
Kde Kde 3.2.2
Kde Kde 3.2.3
Redhat Fedora Core Core 2.0
NA
CVE-2005-4684
Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote malicious users to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, ...
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 3.1.2
Kde Konqueror 3.3
Kde Konqueror 0.1
Kde Konqueror 3.0.2
Kde Konqueror 3.0.3
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.3.2
Kde Konqueror 3.3.1
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.2.6
NA
CVE-2014-5033
KDE kdelibs prior to 4.14 and kauth prior to 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) p...
Canonical Ubuntu Linux 14.04
Debian Kde4libs -
Canonical Ubuntu Linux 12.04
Kde Kdelibs 4.12.95
Kde Kdelibs 4.12.90
Kde Kdelibs 4.11.97
Kde Kdelibs 4.11.95
Kde Kdelibs 4.11.1
Kde Kdelibs 4.11.0
Kde Kdelibs
Kde Kdelibs 4.13.95
Kde Kauth
Kde Kdelibs 4.13.3
Kde Kdelibs 4.12.80
Kde Kdelibs 4.12.5
Kde Kdelibs 4.11.90
Kde Kdelibs 4.11.80
Kde Kdelibs 4.10.97
Kde Kdelibs 4.10.95
Kde Kdelibs 4.13.90
Kde Kdelibs 4.13.80
Kde Kdelibs 4.13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »