Lucene search
FreeBSD479DF73E-2838-11EF-9CAB-4CCC6ADDA413HistoryMay 31, 2024 - 12:00 a.m.
plasma[56]-plasma-workspace -- Unauthorized users can access session manager
2024-05-3100:00:00
vuxml.freebsd.org
plasma-workspace
unauthorized access
session manager
kde
xsmp manager
ice
local connections
session restore
arbitrary code
unix
David Edmundson reports:
KSmserver, KDE’s XSMP manager, incorrectly allows connections via ICE
based purely on the host, allowing all local connections. This allows
another user on the same machine to gain access to the session
manager.
A well crafted client could use the session restore feature to execute
arbitrary code as the user on the next boot.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | plasma5-plasma-workspace | < 5.27.11.1 | UNKNOWN |
| FreeBSD | any | noarch | plasma6-plasma-workspace | < 6.0.4_2 | UNKNOWN |
Related
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0214)
2024-06-10 00:00:00
Fedora: Security Advisory for plasma-workspace (FEDORA-2024-83fc86a0bc)
2024-06-07 00:00:00
Ubuntu: Security Advisory (USN-6843-1)
2024-06-27 00:00:00
nessus
nessus
Fedora 40 : plasma-workspace (2024-83fc86a0bc)
2024-06-02 00:00:00
Fedora 39 : plasma-workspace (2024-d120dc28b8)
2024-06-02 00:00:00
Debian dla-3827 : libcolorcorrect5 - security update
2024-06-14 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: plasma-workspace-5.27.11.1-1.fc39
2024-06-02 03:39:41
[SECURITY] Fedora 40 Update: plasma-workspace-6.0.5.1-1.fc40
2024-06-02 01:23:30
osv
osv
plasma-workspace - security update
2024-06-14 00:00:00
plasma-workspace vulnerability
2024-06-26 12:12:09
alpinelinux
alpinelinux
CVE-2024-36041
2024-06-01 19:11:46
debiancve
debiancve
CVE-2024-36041
2024-06-01 19:11:46
ubuntucve
ubuntucve
CVE-2024-36041
2024-06-03 00:00:00
mageia
mageia
Updated plasma-workspace packages fix security vulnerability
2024-06-07 20:31:41
7.4 High
AI Score
Confidence
Low
0 Low
EPSS
Percentile
0.0%
Related for 479DF73E-2838-11EF-9CAB-4CCC6ADDA413