Lucene search
K

75 matches found

Prion
Prion
added 2019/08/07 3:15 p.m.19 views

Code injection

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

5.1CVSS7.6AI score0.04069EPSS
Exploits1References18Affected Software8
CVE
CVE
added 2019/08/07 2:30 p.m.285 views

CVE-2019-14744

The CVE-2019-14744 issue affects KDE Frameworks KConfig prior to 5.61.0, specifically libKF5ConfigCore.so, where mishandling of .desktop and .directory files enables code execution with minimal user interaction. The vulnerability stems from how KConfig processes shell commands in desktop/config f...

7.8CVSS7.6AI score0.04069EPSS
Exploits1References18Affected Software1
Cvelist
Cvelist
added 2019/08/07 2:30 p.m.26 views

CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

7.7AI score0.04069EPSS
Exploits1References18
Debian CVE
Debian CVE
added 2019/08/07 2:30 p.m.23 views

CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

7.8CVSS8AI score0.04069EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2019/08/07 12:0 a.m.27 views

CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

7.8CVSS7.5AI score0.04069EPSS
Exploits1References6
OSV
OSV
added 2019/08/07 12:0 a.m.1 views

UBUNTU-CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

7.8CVSS7.5AI score0.04069EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2019/07/28 12:0 a.m.2 views

PT-2019-3475 · Kde +5 · Kde Frameworks Kconfig +5

Name of the Vulnerable Software and Affected Versions: KDE Frameworks KConfig versions prior to 5.61.0 Description: The issue relates to the mishandling of .desktop and .directory files by libKF5ConfigCore.so, allowing code execution with minimal user interaction. This can be achieved by includin...

7.8CVSS8.3AI score0.04429EPSS
Exploits2References86
Prion
Prion
added 2018/12/04 4:29 p.m.25 views

Design/Logic Flaw

An issue was discovered in the Linux kernel before 4.19.3. cryptoreportone and related functions in crypto/cryptouser.c the crypto user configuration API do not fully initialize structures that are copied to userspace, potentially leaking sensitive memory to user programs. NOTE: this is a...

1.9CVSS5AI score0.00433EPSS
Exploits1References10Affected Software2
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.16 views

Fedora Update for kf5-kconfig FEDORA-2016-cef912e3a4

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.04429EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.13 views

Fedora Update for kf5-kconfig FEDORA-2016-4701636a74

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.04429EPSS
Exploits1References2
Fedora
Fedora
added 2016/07/23 9:6 p.m.20 views

[SECURITY] Fedora 23 Update: kf5-kconfig-5.24.0-1.fc23

KDE Frameworks 5 Tier 1 addon with advanced configuration system made of two parts: KConfigCore and KConfigGui...

7.5CVSS1.9AI score0.04429EPSS
Exploits1
Fedora
Fedora
added 2016/07/23 9:6 p.m.25 views

[SECURITY] Fedora 23 Update: kf5-kconfigwidgets-5.24.0-1.fc23

KConfigWidgets provides easy-to-use classes to create configuration dialogs , as well as a set of widgets which uses KConfig to store their settings...

7.5CVSS1.9AI score0.04429EPSS
Exploits1
Fedora
Fedora
added 2016/07/23 7:7 p.m.21 views

[SECURITY] Fedora 24 Update: kf5-kconfig-5.24.0-1.fc24

KDE Frameworks 5 Tier 1 addon with advanced configuration system made of two parts: KConfigCore and KConfigGui...

7.5CVSS1.9AI score0.04429EPSS
Exploits1
Fedora
Fedora
added 2016/07/23 7:7 p.m.26 views

[SECURITY] Fedora 24 Update: kf5-kconfigwidgets-5.24.0-1.fc24

KConfigWidgets provides easy-to-use classes to create configuration dialogs , as well as a set of widgets which uses KConfig to store their settings...

7.5CVSS1.9AI score0.04429EPSS
Exploits1
Oracle linux
Oracle linux
added 2014/05/07 12:0 a.m.62 views

kernel security and bug fix update

2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...

10CVSS7.3AI score0.10385EPSS
Exploits3
Rows per page
Query Builder