Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-1511
HistoryMay 17, 2010 - 9:00 p.m.

CVE-2010-1511

2010-05-1721:00:00
CWE-264
[email protected]
web.nvd.nist.gov
37
cve-2010-1511
kget
kde sc
download confirmation
remote attackers
file overwrite
metalink file

9.2 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.008 Low

EPSS

Percentile

81.8%

JSON

KGet 2.4.2 in KDE SC 4.0.0 through 4.4.3 does not properly request download confirmation from the user, which makes it easier for remote attackers to overwrite arbitrary files via a crafted metalink file.

Related

ubuntucve 1
securityvulns 2
prion 1
fedora 68
nessus 7
openvas 94
ubuntu 1
gentoo 1
ubuntucve
ubuntucve
CVE-2010-1511
2010-05-14 00:00:00
securityvulns
securityvulns
Secunia Research: KDE KGet Insecure File Operation Vulnerability
2010-05-14 00:00:00
KDE KGet files overwrite
2010-05-14 00:00:00
prion
prion
Cross site request forgery (csrf)
2010-05-17 21:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: kdeartwork-4.4.3-1.fc12.1
2010-05-26 21:41:20
[SECURITY] Fedora 11 Update: kdebase-runtime-4.4.3-1.fc11.1
2010-05-26 21:45:22
[SECURITY] Fedora 13 Update: kdeplasma-addons-4.4.3-1.fc13.1
2010-05-26 21:42:53
nessus
nessus
Fedora 12 : kdenetwork-4.4.5-4.fc12 (2010-18029)
2010-12-01 00:00:00
Mandriva Linux Security Advisory : kdenetwork4 (MDVSA-2010:098)
2010-05-19 00:00:00
Ubuntu 9.04 / 9.10 / 10.04 LTS : kdenetwork vulnerabilities (USN-938-1)
2010-05-14 00:00:00
openvas
openvas
Fedora Update for kdeadmin FEDORA-2010-8547
2010-05-28 00:00:00
Fedora Update for kdeutils FEDORA-2010-8544
2010-05-28 00:00:00
Fedora Update for kdepim-runtime FEDORA-2010-8547
2010-05-28 00:00:00
ubuntu
ubuntu
KDENetwork vulnerabilities
2010-05-13 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2010
2014-12-11 00:00:00

9.2 High

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.008 Low

EPSS

Percentile

81.8%

JSON
Related for CVE-2010-1511
ubuntucve1securityvulns2prion1fedora68nessus7openvas94ubuntu1gentoo1