Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-3455
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code ...
Kde Koffice 1.3
Kde Koffice 1.3.4
Kde Koffice 1.4.1
Kde Koffice 1.3.3
Kde Koffice 1.3.5
Kde Koffice
Kde Koffice 1.2.1
Kde Koffice 1.4.2
Kde Koffice 1.6.1
Kde Koffice 1.3.1
Kde Koffice 1.2
Kde Koffice 1.4
Kde Koffice 1.3.2
4.3
CVSSv2
CVE-2012-3413
The HTMLQuoteColorer::process function in messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 up to and including 4.8 does not disable JavaScript, Java, and Plugins, which allows remote malicious users to inject arbitrary web script or HTML via a crafted email.
Kde Kde Pim 4.6
Kde Kde Pim 4.8
6.9
CVSSv2
CVE-2011-5054
kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service name, a different vulnerability t...
Kde Kcheckpass
4.3
CVSSv2
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
5.8
CVSSv2
CVE-2011-1586
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the name attribute of a file elem...
Kde Kde Sc 4.1.0
Kde Kde Sc 4.0.3
Kde Kde Sc 4.0.5
Kde Kde Sc 4.5.2
Kde Kde Sc 4.3.0
Kde Kde Sc 4.0.0
Kde Kde Sc 4.2.3
Kde Kde Sc 4.1.3
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.2
Kde Kde Sc 4.4.1
Kde Kde Sc 4.2.2
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 2.2.0
Kde Kde Sc 4.1.2
Kde Kde Sc 4.2.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.3.5
4.3
CVSSv2
CVE-2011-1168
Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KDE SC 4.4.0 up to and including 4.6.1 allows remote malicious users to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable w...
Kde Kde Sc 4.5.2
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.4.1
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.6.1
Kde Kde Sc 4.4.4
Kde Kde Sc 4.5.3
Kde Kde Sc 4.4.5
Kde Kde Sc 4.6.0
Kde Kde Sc 4.5.0
4.3
CVSSv2
CVE-2011-1094
kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs prior to 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a certificate issued ...
Redhat Kdelibs
Redhat Kdelibs 3.5.10
Redhat Kdelibs 3.5.9
Redhat Kdelibs 3.5.2
6.8
CVSSv2
CVE-2010-3704
The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf prior to 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent malicious users to cause a denial of service (crash) and possib...
Poppler Poppler 0.9.0
Poppler Poppler 0.9.1
Poppler Poppler 0.10.4
Poppler Poppler 0.10.5
Poppler Poppler 0.12.0
Poppler Poppler 0.12.1
Poppler Poppler 0.13.3
Poppler Poppler 0.13.4
Poppler Poppler 0.15.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.1
Poppler Poppler 0.11.0
Poppler Poppler 0.11.1
Poppler Poppler 0.12.4
Poppler Poppler 0.13.0
Poppler Poppler 0.14.3
Poppler Poppler 0.14.4
Poppler Poppler 0.10.2
Poppler Poppler 0.10.3
Poppler Poppler 0.11.2
Poppler Poppler 0.11.3
Poppler Poppler 0.13.1
6.8
CVSSv2
CVE-2010-2575
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 up to and including 4.5.0 allows remote malicious users to cause a denial of service (application crash) or...
Kde Kde Sc 4.3.0
Kde Kde Sc 4.4.1
Kde Kde Sc 4.4.2
Kde Kde Sc 4.4.3
Kde Kde Sc 4.3.5
Kde Kde Sc 4.4.0
Kde Kde Sc 4.3.3
Kde Kde Sc 4.3.4
Kde Kde Sc 4.5.0
Kde Kde Sc 4.3.1
Kde Kde Sc 4.3.2
Kde Kde Sc 4.4.4
Kde Kde Sc 4.4.5
6.5
CVSSv2
CVE-2010-2785
The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and ...
Kvirc Kvirc 4.0.2
Kvirc Kvirc 3.0.0
Kvirc Kvirc 3.4.0
Kvirc Kvirc 3.0.1
Kvirc Kvirc 4.0.0
Kvirc Kvirc 3.4.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »