Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2003-0690
KDM in KDE 3.1.3 and previous versions does not verify whether the pam_setcred function call succeeds, which may allow malicious users to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
Kde Kde 1.1
Kde Kde 1.1.1
Kde Kde 2.1.1
Kde Kde 2.1.2
Kde Kde 3.0.3a
Kde Kde 3.0.4
Kde Kde 3.1.2
Kde Kde 3.1.3
Kde Kde 2.0
Kde Kde 2.0.1
Kde Kde 3.0
Kde Kde 3.0.1
Kde Kde 3.0.5b
Kde Kde 3.1
Kde Kde 2.0 Beta
Kde Kde 2.1
Kde Kde 3.0.2
Kde Kde 3.0.3
Kde Kde 3.1.1
Kde Kde 3.1.1a
Kde Kde 1.1.2
Kde Kde 1.2
828
VMScore
CVE-2019-7443
KDE KAuth prior to 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Certain types can cause crashes, and trigger the decoding of arbitrary images with dynamically loaded plugins. In other words, KAuth uninten...
Kde Kauth
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Backports -
Fedoraproject Fedora 28
Fedoraproject Fedora 29
828
VMScore
CVE-2010-2452
Directory traversal vulnerability in the DCC functionality in KVIrc 3.4 and 4.0 allows remote malicious users to overwrite arbitrary files via unknown vectors.
Kvirc Kvirc 4.0
Kvirc Kvirc 3.4.0
828
VMScore
CVE-2009-4035
The FoFiType1::parse function in fofi/FoFiType1.cc in Xpdf 3.0.0, gpdf 2.8.2, kpdf in kdegraphics 3.3.1, and possibly other libraries and versions, does not check the return value of the getNextLine function, which allows context-dependent malicious users to execute arbitrary cod...
Kde Kpdf 3.3.1
Kde Kdegraphics 3.3.1
Xpdf Xpdf 3.0.0
Gnome Gpdf 2.8.2
828
VMScore
CVE-2009-3604
The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x prior to 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arb...
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
828
VMScore
CVE-2009-3603
Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1 might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are...
Poppler Poppler 0.7.3
Poppler Poppler 0.3.2
Poppler Poppler 0.10.3
Poppler Poppler 0.4.0
Poppler Poppler 0.9.3
Poppler Poppler 0.10.1
Poppler Poppler 0.10.0
Poppler Poppler 0.10.7
Poppler Poppler 0.7.1
Poppler Poppler 0.6.1
Poppler Poppler 0.3.1
Poppler Poppler 0.11.3
Poppler Poppler 0.10.6
Foolabs Xpdf 3.02pl3
Poppler Poppler 0.5.2
Poppler Poppler 0.6.0
Poppler Poppler 0.3.3
Poppler Poppler 0.4.2
Poppler Poppler 0.10.4
Poppler Poppler 0.9.2
Poppler Poppler 0.6.4
Poppler Poppler 0.1.2
828
VMScore
CVE-2009-3606
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf prior to 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
Poppler Poppler 0.4.4
Poppler Poppler 0.5.0
Poppler Poppler 0.5.1
Poppler Poppler 0.5.2
828
VMScore
CVE-2009-3608
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote malicious users to execute arbitrary code via a crafted PDF document tha...
Foolabs Xpdf 3.02pl1
Foolabs Xpdf 3.02pl2
Foolabs Xpdf 3.02pl3
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 3.02
Poppler Poppler
Poppler Poppler 0.1
Poppler Poppler 0.1.1
Poppler Poppler 0.1.2
Poppler Poppler 0.2.0
Poppler Poppler 0.3.0
Poppler Poppler 0.3.1
Poppler Poppler 0.3.2
Poppler Poppler 0.3.3
Poppler Poppler 0.4.0
Poppler Poppler 0.4.1
Poppler Poppler 0.4.2
Poppler Poppler 0.4.3
Poppler Poppler 0.4.4
Poppler Poppler 0.5.0
Poppler Poppler 0.5.1
828
VMScore
CVE-2009-1725
WebKit in Apple Safari prior to 4.0.2, as used on iPhone OS prior to 3.1, iPhone OS prior to 3.1.1 for iPod touch, and other platforms; KHTML in kdelibs in KDE; QtWebKit (aka Qt toolkit); and possibly other products do not properly handle numeric character references, which allow...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.1.1
Apple Safari 3.1.0b
Apple Safari 3.0.2
Apple Safari 4.0.0b
Apple Safari 3.1.0
Apple Safari 4.0
Apple Safari 3.2.2
Apple Safari 3.0.3b
Apple Safari 3.0.0b
Apple Safari 3.1.2
Apple Safari 3.0.3
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 2.0
828
VMScore
CVE-2009-1698
WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allow...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.1.0b
Apple Safari 3.1.0
Apple Safari 3.0.1b
Apple Safari 3.1.2
Apple Safari 3.1.1
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0
Apple Safari
Apple Safari 3.0.0b
Apple Safari 3.2.0
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 2.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »