Lucene search
K

18 matches found

OSV
OSV
added 2026/01/09 2:6 p.m.5 views

OESA-2026-1042 kf5-messagelib security update

. Security Fixes: KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration.CVE-2025-69412...

3.4CVSS6.8AI score0.00241EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:23 a.m.4 views

SUSE CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.9AI score0.00241EPSS
Exploits0References3
OSV
OSV
added 2026/01/01 12:15 a.m.5 views

DEBIAN-CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.2AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2026/01/01 12:15 a.m.9 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS0.00241EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/31 11:20 p.m.3 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.5AI score0.00241EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/31 11:20 p.m.27 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS0.00241EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/12/31 11:20 p.m.4 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.2AI score0.00241EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.2 views

PT-2025-54472

Name of the Vulnerable Software and Affected Versions KDE messagelib versions prior to 25.11.90 Description The software does not properly handle SSL errors when using the Google Safe Browsing Lookup API, potentially allowing for spoofing of threat data. This issue affects the find function withi...

3.4CVSS6.6AI score0.00241EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-18730

Malware in sbrugna...

6.5CVSS6.4AI score0.00604EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-31855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a...

6.5CVSS6.5AI score0.00604EPSS
Exploits0References2
OSV
OSV
added 2021/06/02 4:15 p.m.18 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2021/06/02 4:15 p.m.4 views

DEBIAN-CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS6.5AI score0.00604EPSS
Exploits0References1
NVD
NVD
added 2021/06/02 4:15 p.m.24 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS0.00604EPSS
Exploits0References2
Prion
Prion
added 2021/06/02 4:15 p.m.15 views

Design/Logic Flaw

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

4CVSS6.3AI score0.00604EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2021/06/02 4:15 p.m.25 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS6.6AI score0.00604EPSS
Exploits0References3
CVE
CVE
added 2021/06/02 12:0 a.m.91 views

CVE-2021-31855

CVE-2021-31855 affects KDE Messagelib up to 5.17.0. In some scenarios, deleting an attachment from a decrypted message stored on a remote server (e.g., IMAP) causes KMail to upload the decrypted content, enabling a user with access to server-stored messages to read plaintext. The root cause is de...

6.5CVSS6.2AI score0.00604EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/02 12:0 a.m.28 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5AI score0.00604EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/06/02 12:0 a.m.24 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS6.3AI score0.00604EPSS
Exploits0
Rows per page
Query Builder