Lucene search
K

6 matches found

Gentoo Linux
Gentoo Linux
added 2024/07/06 12:0 a.m.21 views

KDE Plasma Workspaces: Privilege Escalation

Background KDE Plasma workspace is a widget based desktop environment designed to be fast and efficient. Description Multiple vulnerabilities have been discovered in KDE Plasma Workspaces. Please review the CVE identifiers referenced below for details. Impact KSmserver, KDE's XSMP manager,...

7.8CVSS8.4AI score0.00293EPSS
Exploits0
NVD
NVD
added 2024/07/05 2:15 a.m.23 views

CVE-2024-36041

KSmserver in KDE Plasma Workspace aka plasma-workspace before 5.27.11.1 and 6.x before 6.0.5.1 allows connections via ICE based purely on the host, i.e., all local connections are accepted. This allows another user on the same machine to gain access to the session manager, e.g., use the...

7.8CVSS0.00293EPSS
Exploits0References7
OSV
OSV
added 2024/06/26 12:12 p.m.6 views

USN-6843-1 plasma-workspace vulnerability

Fabian Vogt discovered that Plasma Workspace incorrectly handled connections via ICE. A local attacker could possibly use this issue to gain access to another user's session manager and execute arbitrary code...

7.8CVSS6AI score0.00293EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2017:2173-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00322EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2017/07/11 8:29 p.m.18 views

CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

5.5CVSS6AI score0.00322EPSS
Exploits0References3
NVD
NVD
added 2017/07/11 8:29 p.m.19 views

CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

5.5CVSS5.3AI score0.00322EPSS
Exploits0References2
Rows per page
Query Builder