Kde Vulnérabilités

Chronologie

Taper

Produit

KDE Konqueror33
KDE KMail9
KDE SC5
KDE Plasma Workspace3
KDE Applications3

Contre-mesures

Official Fix67
Temporary Fix0
Workaround0
Unavailable6
Not Defined35

Exploitabilité

High3
Functional1
Proof-of-Concept41
Unproven6
Not Defined57

Vecteur d'accès

Not Defined0
Physical1
Local22
Adjacent1
Network84

Authentification

Not Defined0
High0
Low14
None94

Interaction de l'utilisateur

Not Defined0
Required12
None96

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤412
≤511
≤633
≤715
≤823
≤99
≤105

CVSSv3 Temp

≤10
≤20
≤31
≤412
≤519
≤628
≤728
≤813
≤94
≤103

VulDB

≤10
≤20
≤30
≤414
≤512
≤633
≤713
≤822
≤98
≤106

NVD

≤10
≤20
≤30
≤41
≤52
≤65
≤74
≤87
≤94
≤101

CNA

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k12
<2k48
<5k39
<10k2
<25k5
<50k2
<100k0
≥100k0

Exploiter aujourd'hui

<1k106
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (49): Applications (3), Connect (1), Discover (1), Django (1), File Manager (1), K-Mail (3), KAuth (1), KCron (1), KDE-Runtime (1), KDELibs (2), KDE PIM (1), KDE SC (1), KDEUtils (1), KMPlayer (1), KMail (9), KMplayer (1), KOffice (3), KTextEditor (1), KWallet (1), Kate (1), Kdebase (1), Kmail (1), Konqueror (33), Kopete (1), KsIRC (1), Messagelib (1), Partition Manager (1), Paste Applet (2), Plasma Workspace (3), SC (5), Trojita (2), Workspace (1), ark (2), kauth (1), kcheckpass (1), kde-workspace (1), kdegraphics (2), kdelibs (3), kio-extras (1), konqueror (1), kpdf (2), ktvision (1), kvt (2), kwintv (1), libkhtml (1), messagelib (1), okular (1), plasma-workspace (1), sc (2)

Link to Vendor Website: https://kde.org/

PubliéBaseTempVulnérabilitéProdExpConCTIEPSSCVE
11/02/20243.13.0KDE Plasma Workspace Theme File eventpluginsmanager.cpp enabledPlugins directory traversalInconnueNot DefinedOfficial Fix0.030.00045CVE-2024-1433
22/04/20233.73.4KDE Applications KWallet chiffrement faibleInconnueProof-of-ConceptNot Defined0.000.00396CVE-2013-7252
21/04/20236.86.6KDE Paste Applet kdeplasma-addons pastemacroexpander.cpp authentification faibleInconnueProof-of-ConceptOfficial Fix0.000.00233CVE-2013-2120
21/04/20235.45.1KDE Paste Applet random chiffrement faibleInconnueProof-of-ConceptNot Defined0.000.00047CVE-2013-2213
05/07/20228.07.9KDE Django Extract sql injectionContent Management SystemNot DefinedOfficial Fix0.020.00539CVE-2022-34265
26/02/20225.04.8KDE KCron tmp elévation de privilègesInconnueNot DefinedNot Defined0.000.00044CVE-2022-24986
12/02/20226.36.0KDE Kate/KTextEditor LSP Plugin Remote Code ExecutionInconnueNot DefinedOfficial Fix0.000.00075CVE-2022-23853
10/08/20213.73.7KDE KMail SMTP STARTTLS chiffrement faibleMail Client SoftwareNot DefinedNot Defined0.000.00081CVE-2021-38373
10/08/20215.65.6KDE Trojita IMAP Server elévation de privilègesInconnueNot DefinedNot Defined0.000.00070CVE-2021-38372
02/06/20213.13.1KDE Messagelib Encrypted Message viewer_p.cpp deleteAttachment chiffrement faibleInconnueNot DefinedNot Defined0.000.00065CVE-2021-31855
21/03/20216.96.6KDE Discover URL KNSResource.cpp Privilege EscalationInconnueNot DefinedOfficial Fix0.000.00097CVE-2021-28117
26/10/20207.87.5KDE Partition Manager fstab kpmcore_externalcommand elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00042CVE-2020-27187
08/10/20204.54.3KDE Connect Packet dénie de serviceInconnueNot DefinedOfficial Fix0.000.00046CVE-2020-26164
02/09/20206.25.9KDE ark directory traversalInconnueNot DefinedOfficial Fix0.040.00248CVE-2020-24654
03/08/20207.37.0KDE ark Extraction jobs.cpp directory traversalInconnueNot DefinedOfficial Fix0.000.00128CVE-2020-16116
27/07/20205.15.1KDE KMail POP3 chiffrement faibleMail Client SoftwareNot DefinedNot Defined0.000.00128CVE-2020-15954
09/05/20203.93.9KDE kio-extras fish.cpp establishConnection divulgation de l'informationInconnueNot DefinedNot Defined0.000.00044CVE-2020-12755
17/04/20205.95.6KDE KMail divulgation de l'informationMail Client SoftwareNot DefinedOfficial Fix0.000.00090CVE-2020-11880
24/03/20206.56.3KDE okular Action Link elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00288CVE-2020-9359
12/03/20206.36.1KDE Applications messagelib defaultrenderer.cpp elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00084CVE-2018-19516
07/05/20199.08.8KDE KAuth Helpers DBusHelperProxy.cpp elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00478CVE-2019-7443
07/04/20194.34.2KDE Trojita Encryption chiffrement faibleInconnueProof-of-ConceptNot Defined0.020.00086CVE-2019-10734
07/04/20194.34.2KDE KMail Encryption chiffrement faibleMail Client SoftwareProof-of-ConceptNot Defined0.020.00089CVE-2019-10732
29/11/20187.47.2KDE Applications HTML Thumbnailer Plugin divulgation de l'informationInconnueNot DefinedOfficial Fix0.000.00178CVE-2018-19120
08/05/20186.56.3KDE KWallet kwallet-pam elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00042CVE-2018-10380

83 plus d'entrées ne sont pas affichées

Want to stay up to date on a daily basis?

Enable the mail alert feature now!