Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-3455
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code ...
Kde Koffice 1.3
Kde Koffice 1.3.4
Kde Koffice 1.4.1
Kde Koffice 1.3.3
Kde Koffice 1.3.5
Kde Koffice
Kde Koffice 1.2.1
Kde Koffice 1.4.2
Kde Koffice 1.6.1
Kde Koffice 1.3.1
Kde Koffice 1.2
Kde Koffice 1.4
Kde Koffice 1.3.2
NA
CVE-2012-3413
The HTMLQuoteColorer::process function in messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 up to and including 4.8 does not disable JavaScript, Java, and Plugins, which allows remote malicious users to inject arbitrary web script or HTML via a crafted email.
Kde Kde Pim 4.6
Kde Kde Pim 4.8
NA
CVE-2011-5054
kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service name, a different vulnerability t...
Kde Kcheckpass
NA
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
NA
CVE-2011-1586
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the name attribute of a file elem...
Kde Kde Sc 4.1.0
Kde Kde Sc 4.0.3
Kde Kde Sc 4.0.5
Kde Kde Sc 4.5.2
Kde Kde Sc 4.3.0
Kde Kde Sc 4.0.0
Kde Kde Sc 4.2.3
Kde Kde Sc 4.1.3
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.2
Kde Kde Sc 4.4.1
Kde Kde Sc 4.2.2
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 2.2.0
Kde Kde Sc 4.1.2
Kde Kde Sc 4.2.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.3.5
NA
CVE-2011-1168
Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KDE SC 4.4.0 up to and including 4.6.1 allows remote malicious users to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable w...
Kde Kde Sc 4.5.2
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.4.1
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.6.1
Kde Kde Sc 4.4.4
Kde Kde Sc 4.5.3
Kde Kde Sc 4.4.5
Kde Kde Sc 4.6.0
Kde Kde Sc 4.5.0
NA
CVE-2011-1094
kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs prior to 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a certificate issued ...
Redhat Kdelibs
Redhat Kdelibs 3.5.10
Redhat Kdelibs 3.5.9
Redhat Kdelibs 3.5.2
NA
CVE-2010-3704
The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf prior to 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent malicious users to cause a denial of service (crash) and possib...
Poppler Poppler 0.9.0
Poppler Poppler 0.9.1
Poppler Poppler 0.10.4
Poppler Poppler 0.10.5
Poppler Poppler 0.12.0
Poppler Poppler 0.12.1
Poppler Poppler 0.13.3
Poppler Poppler 0.13.4
Poppler Poppler 0.15.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.1
Poppler Poppler 0.11.0
Poppler Poppler 0.11.1
Poppler Poppler 0.12.4
Poppler Poppler 0.13.0
Poppler Poppler 0.14.3
Poppler Poppler 0.14.4
Poppler Poppler 0.10.2
Poppler Poppler 0.10.3
Poppler Poppler 0.11.2
Poppler Poppler 0.11.3
Poppler Poppler 0.13.1
NA
CVE-2010-2575
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 up to and including 4.5.0 allows remote malicious users to cause a denial of service (application crash) or...
Kde Kde Sc 4.3.0
Kde Kde Sc 4.4.1
Kde Kde Sc 4.4.2
Kde Kde Sc 4.4.3
Kde Kde Sc 4.3.5
Kde Kde Sc 4.4.0
Kde Kde Sc 4.3.3
Kde Kde Sc 4.3.4
Kde Kde Sc 4.5.0
Kde Kde Sc 4.3.1
Kde Kde Sc 4.3.2
Kde Kde Sc 4.4.4
Kde Kde Sc 4.4.5
NA
CVE-2010-2785
The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and ...
Kvirc Kvirc 4.0.2
Kvirc Kvirc 3.0.0
Kvirc Kvirc 3.4.0
Kvirc Kvirc 3.0.1
Kvirc Kvirc 4.0.0
Kvirc Kvirc 3.4.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »