Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-8600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier allow remot...

4.3CVSS5.5AI score0.02093EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2014-0478)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.02093EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.21 views

openSUSE Security Update : kdebase4-runtime / kdelibs4 / konversation / etc (openSUSE-2015-251)

KDE and QT were updated to fix security issues and bugs. The following vulerabilities were fixed : - CVE-2014-0190: Malformed GIF files could have crashed QT based applications - CVE-2015-0295: Malformed BMP files could have crashed QT based applications - CVE-2014-8600: Multiple cross-site...

5CVSS6.8AI score0.06356EPSS
Exploits3References10
OpenVAS
OpenVAS
added 2015/01/26 12:0 a.m.18 views

Fedora Update for kde-runtime FEDORA-2015-0564

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.02147EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2015/01/05 12:0 a.m.19 views

Fedora Update for kde-runtime FEDORA-2014-15618

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.02093EPSS
Exploits2References2
NVD
NVD
added 2014/12/08 11:59 a.m.17 views

CVE-2014-8600

Multiple cross-site scripting XSS vulnerabilities in KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via a crafted URI using the 1 zip, 2 trash, 3 tar, 4 thumbnail, 5 smtps, 6 smtp, 7 smb...

4.3CVSS5.5AI score0.02093EPSS
Exploits2References5
CVE
CVE
added 2014/12/08 11:0 a.m.68 views

CVE-2014-8600

CVE-2014-8600 covers multiple XSS vulnerabilities in KDE components: KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier. The issue arises from improper handling of URIs in an error message, allowing an attacker to inject arbitrary web script or HTML vi...

4.3CVSS5.4AI score0.02093EPSS
Exploits2References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/06 12:0 a.m.33 views

Fedora 20 : kwebkitpart-1.3.4-5.fc20 (2014-15130)

Sanitize input to disallow JavaScript being executed in the context of the referenced hostname. See also https://www.kde.org/info/security/advisory-20141113-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable h...

4.3CVSS5.3AI score0.02093EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2014/12/06 12:0 a.m.32 views

Fedora Update for kwebkitpart FEDORA-2014-15130

Check the version of kwebkitpart SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868556";...

4.3CVSS6.3AI score0.02093EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/12/04 12:0 a.m.25 views

Fedora 21 : kwebkitpart-1.3.4-5.fc21 (2014-15150)

Sanitize input to disallow JavaScript being executed in the context of the referenced hostname. See also https://www.kde.org/info/security/advisory-20141113-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable h...

4.3CVSS5.3AI score0.02093EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2014/12/04 12:0 a.m.29 views

Fedora 21 : kde-runtime-4.14.3-2.fc21 (2014-15618)

New security fix release, insufficient Input Validation By IO Slaves, see also https://www.kde.org/info/security/advisory-20141113-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

4.3CVSS5.3AI score0.02093EPSS
Exploits2References4
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.70 views

[USN-2414-1] KDE-Runtime vulnerability

========================================================================== Ubuntu Security Notice USN-2414-1 November 24, 2014 kde-runtime vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

4.3CVSS0.8AI score0.02093EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/11/26 12:0 a.m.17 views

Fedora 20 : kde-runtime-4.14.3-2.fc20 (2014-15532)

New security fix release, insufficient Input Validation By IO Slaves, see also https://www.kde.org/info/security/advisory-20141113-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

4.3CVSS5.3AI score0.02093EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2014/11/26 12:0 a.m.22 views

Fedora Update for kde-runtime FEDORA-2014-15532

Check the version of kde-runtime SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868520";...

4.3CVSS6.3AI score0.02093EPSS
Exploits2References2
OSV
OSV
added 2014/11/21 12:44 p.m.7 views

MGASA-2014-0478 Updated kdebase4-runtime and kwebkitpart packages fix security vulnerability

kwebkitpart and the bookmarks:// io slave were not sanitizing input correctly allowing to some javascript being executed on the context of the referenced hostname CVE-2014-8600...

4.3CVSS6.2AI score0.02093EPSS
Exploits2References4
Mageia
Mageia
added 2014/11/21 12:44 p.m.39 views

Updated kdebase4-runtime and kwebkitpart packages fix security vulnerability

kwebkitpart and the bookmarks:// io slave were not sanitizing input correctly allowing to some javascript being executed on the context of the referenced hostname CVE-2014-8600...

4.3CVSS6.5AI score0.02093EPSS
Exploits2References3
Packet Storm
Packet Storm
added 2014/11/19 12:0 a.m.62 views

IO Slaves KDE Insufficient Input Validation

Vulnerability title: Insufficient Input Validation By IO Slaves In KDE e.V. KDE CVE: CVE-2014-8600 Vendor: KDE e.V. Product: KDE Affected version: kwebkitpart alert"$proto"+document.domain;" done Further details at:...

4.3CVSS0.2AI score0.02093EPSS
Exploits2
Rows per page
Query Builder