Lucene search
K

5 matches found

OSV
OSV
added 2022/06/24 8:50 p.m.5 views

MGASA-2022-0238 Updated exo packages fix security vulnerability

Changed to prevent executing possibly malicious .desktop files from online sources ftp://, http:// etc...

8.8CVSS8.7AI score0.0151EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/09/04 11:15 a.m.5 views

kdelibs: malicious desktop files and configuration files lead to code execution with minimal user interaction

A flaw was found in the KDE Frameworks KConfig prior to version 5.61.0. Certain syntax commands were allowed in .desktop, .directory, and configuration files to allow flexible configurations with the desktop environment. An attacker could add malicious code to a file that a user would...

7.8CVSS5.9AI score0.04069EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/08/30 12:0 a.m.33 views

Fedora 29 : 6:kdelibs / kde-settings (2019-39d23c7a94)

This update fixes CVE-2019-14744 kconfig arbitrary shell code execution in the compatibility library kdelibs 4 used by legacy applications not yet ported to KDE Frameworks 5. The included kde-settings update removes obsolete settings that conflict with the security fix and are no longer needed se...

7.8CVSS8AI score0.04069EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/08/14 12:0 a.m.39 views

Fedora 30 : 6:kdelibs / kde-settings (2019-a746ac9c89)

This update fixes CVE-2019-14744 kconfig arbitrary shell code execution in the compatibility library kdelibs 4 used by legacy applications not yet ported to KDE Frameworks 5. The included kde-settings update removes obsolete settings that conflict with the security fix and are no longer needed se...

7.8CVSS8AI score0.04069EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/08/07 2:30 p.m.27 views

CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .deskto...

7.7AI score0.04069EPSS
Exploits1References18
Rows per page
Query Builder