17 matches found
Astra Linux – Vulnerability in konsole
KDE Konsole prior to version 25.04.2 allowed remote code execution in certain scenarios. It supported loading URLs from scheme handlers such as ssh://, telnet://, or rlogin:// URLs. This could be executed regardless of whether the ssh, telnet, or rlogin binary was available. In this mode, there w...
EUVD-1999-1249
Malware in sbrugna...
EUVD-2025-18073
Malicious code in bioql PyPI...
ROS-20250707-01
A vulnerability in the Konsole terminal emulator of the KDE desktop environment is related to the implementation of an incorrect control flow when processing telnet://, rlogin:// and ssh:// URLs. control flow when handling telnet://, rlogin:// and ssh:// URLs. Exploitation of the vulnerability...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
DEBIAN-CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
UBUNTU-CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code...
CVE-2025-49091
KDE Konsole (before version 25.04.2) is vulnerable to remote code execution via its URL-handling feature. If Konsole loads URLs from scheme handlers (e.g., ssh://, telnet://, rlogin://) and the corresponding binary is unavailable, it can fall back to invoking /bin/bash with the URL arguments, all...
PT-2025-24908 · Kde +4 · Konsole +4
Name of the Vulnerable Software and Affected Versions: konsole versions prior to 25.04.2 konsole versions 4:20.12.3 and earlier konsole versions 4:22.12.3 and earlier Description: The vulnerability in KDE Konsole allows remote code execution when loading URLs from scheme handlers such as ssh://,...
CVE-1999-1268
Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices...
CVE-1999-1268
Vulnerability details (CVE-1999-1268) show a local-privilege/bypass issue in KDE konsole where a local user can hijack or observe another user’s session by accessing certain devices. The provided documents do not specify the exact affected version(s), vulnerable component/file, or underlying root...
CVE-1999-1268
Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices...