Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-3713
The image creation configuration in aaa_base prior to 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain sensitive information and possibly have other unspecified impacts, as demons...
Opensuse Opensuse 13.1
NA
CVE-2013-4132
KDE-Workspace 4.10.5 and previous versions does not properly handle the return value of the glibc 2.17 crypt and pw_encrypt functions, which allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via (1) an invalid salt or a (2) DES or (3)...
Kde Kde Sc
Kde Kde-workspace
Opensuse Opensuse 12.2
NA
CVE-2012-4515
Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.
Kde Kde 4.7.3
1 EDB exploit
NA
CVE-2012-4513
khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote malicious users to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.
Kde Kde 4.7.3
1 EDB exploit
NA
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.2.1
Kde Kde 3.2.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.5
Kde Kde 3.3.x
Kde Kde 1.1
Kde Kde 4.7.3
Kde Kde 2.2
Kde Kde 1.x
Kde Kde 3.5.7
Kde Kde 2.0.1
Kde Kde 3.0.5
Kde Kde 3.1 Beta2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 3.0.2
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.1.4
Kde Kde 3.2.0
Kde Kde 3.2
1 EDB exploit
NA
CVE-2012-3455
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code ...
Kde Koffice 1.3
Kde Koffice 1.3.4
Kde Koffice 1.4.1
Kde Koffice 1.3.3
Kde Koffice 1.3.5
Kde Koffice
Kde Koffice 1.2.1
Kde Koffice 1.4.2
Kde Koffice 1.6.1
Kde Koffice 1.3.1
Kde Koffice 1.2
Kde Koffice 1.4
Kde Koffice 1.3.2
NA
CVE-2012-3413
The HTMLQuoteColorer::process function in messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 up to and including 4.8 does not disable JavaScript, Java, and Plugins, which allows remote malicious users to inject arbitrary web script or HTML via a crafted email.
Kde Kde Pim 4.6
Kde Kde Pim 4.8
NA
CVE-2011-5054
kcheckpass passes a user-supplied argument to the pam_start function, often within a setuid environment, which allows local users to invoke any configured PAM stack, and possibly trigger unintended side effects, via an arbitrary valid PAM service name, a different vulnerability t...
Kde Kcheckpass
NA
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
NA
CVE-2011-1586
Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the name attribute of a file elem...
Kde Kde Sc 4.1.0
Kde Kde Sc 4.0.3
Kde Kde Sc 4.0.5
Kde Kde Sc 4.5.2
Kde Kde Sc 4.3.0
Kde Kde Sc 4.0.0
Kde Kde Sc 4.2.3
Kde Kde Sc 4.1.3
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.2
Kde Kde Sc 4.4.1
Kde Kde Sc 4.2.2
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 2.2.0
Kde Kde Sc 4.1.2
Kde Kde Sc 4.2.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »