Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 6 : kdelibs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: prints passwords contained in HTTP URLs in error messages CVE-2013-2074 - kf5-kio, kdelibs:...

5.5CVSS6.3AI score0.0198EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 5 : kdelibs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: kssl incorrect verification of SSL certificate with NUL in subjectAltName CVE-2009-2702 - kf5-ki...

5.5CVSS6.5AI score0.0198EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.4 views

SUSE CVE-2017-6410

kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL potentially including Basic Authentication credentials, a query string, or PATHINFO, which allows remote attackers to obtain sensitive information via a crafted PAC file...

5.5CVSS5.4AI score0.00828EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2017-0079)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.00828EPSS
Exploits0References4
Debian
Debian
added 2017/05/25 4:25 p.m.38 views

[SECURITY] [DLA 952-1] kde4libs security update

Package : kde4libs Version : 4:4.8.4-4+deb7u3 CVE ID : CVE-2013-2074 CVE-2017-6410 CVE-2017-8422 Debian Bug : 856890 Several vulnerabilities were discovered in kde4libs, the core libraries for all KDE 4 applications. The Common Vulnerabilities and Exposures project identifies the following...

7.8CVSS7.6AI score0.0198EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2017/05/15 12:0 a.m.50 views

Debian DSA-3849-1 : kde4libs - security update

Several vulnerabilities were discovered in kde4libs, the core libraries for all KDE 4 applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-6410 Itzik Kotler, Yonatan Fridburg and Amit Klein of Safebreach Labs reported that URLs are not...

7.8CVSS6.6AI score0.01805EPSS
Exploits3References7
Debian
Debian
added 2017/05/12 8:44 a.m.31 views

[SECURITY] [DSA 3849-1] kde4libs security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3849-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 12, 2017 https://www.debian.org/security/faq -...

7.2CVSS2.6AI score0.01805EPSS
Exploits3
Debian
Debian
added 2017/05/12 8:44 a.m.46 views

[SECURITY] [DSA 3849-1] kde4libs security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3849-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 12, 2017 https://www.debian.org/security/faq -...

7.8CVSS7.2AI score0.01805EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/05/12 12:0 a.m.35 views

Debian Security Advisory DSA 3849-1 (kde4libs - security update)

Several vulnerabilities were discovered in kde4libs, the core libraries for all KDE 4 applications. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2017-6410 Itzik Kotler, Yonatan Fridburg and Amit Klein of Safebreach Labs reported that URLs are not sanitiz...

7.2CVSS0.4AI score0.01805EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2017/05/11 12:0 a.m.27 views

Debian: Security Advisory (DSA-3849-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.6AI score0.01805EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2017/03/14 12:0 a.m.32 views

openSUSE Security Update : kdelibs4 / kio (openSUSE-2017-334)

This update for kdelibs4, kio fixes the following issues : - CVE-2017-6410: Information Leak when accessing https when using a malicious PAC file boo1027520 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

5.5CVSS6AI score0.00828EPSS
Exploits0References2
OSV
OSV
added 2017/03/13 9:55 a.m.8 views

OPENSUSE-SU-2017:0680-1 Security update for kdelibs4, kio

This update for kdelibs4, kio fixes the following issues: - CVE-2017-6410: Information Leak when accessing https when using a malicious PAC file boo1027520...

5.5CVSS5.4AI score0.00828EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/03/13 12:0 a.m.26 views

Fedora 24 : kdelibs3 (2017-01eed6fe8c)

This kdelibs3 KDE 3 compatibility libraries update fixes the security issues : - CVE-2016-6232 karchive: Extraction of tar files possible to arbitrary system locations - CVE-2017-6410 kio: Information Leak when accessing https when using a malicious PAC file for the KDE 3 compatibility libraries...

7.5CVSS6.6AI score0.04429EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/03/13 12:0 a.m.23 views

Fedora 24 : 6:kdelibs (2017-b011e8c922)

Security fix for CVE-2017-6410 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

5.5CVSS6AI score0.00828EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/03/13 12:0 a.m.28 views

Fedora 25 : kdelibs3 (2017-4f4eef4791)

This kdelibs3 KDE 3 compatibility libraries update fixes the security issues : - CVE-2016-6232 karchive: Extraction of tar files possible to arbitrary system locations - CVE-2017-6410 kio: Information Leak when accessing https when using a malicious PAC file for the KDE 3 compatibility libraries...

7.5CVSS6.6AI score0.04429EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/03/06 12:0 a.m.28 views

Fedora 25 : 6:kdelibs (2017-53338ece0c)

Security fix for CVE-2017-6410 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

5.5CVSS6AI score0.00828EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/03/06 12:0 a.m.26 views

Fedora 25 : kf5-kio (2017-f9ab92fa6c)

Security fix for CVE-2017-6410 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

5.5CVSS6AI score0.00828EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/03/05 12:0 a.m.26 views

Fedora Update for kdelibs FEDORA-2017-53338ece0c

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.00828EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/03/05 12:0 a.m.29 views

Fedora Update for kf5-kio FEDORA-2017-f9ab92fa6c

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.8AI score0.00828EPSS
Exploits0References2
OSV
OSV
added 2017/03/02 6:59 a.m.27 views

CVE-2017-6410

kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL potentially including Basic Authentication credentials, a query string, or PATHINFO, which allows remote attackers to obtain sensitive information via a crafted PAC file...

5.5CVSS6.2AI score
Exploits0References3
Rows per page
Query Builder