Kde Sc@4.6.2 Security Vulnerabilities and Issues — Kde Sc@4.6.2 CVE List

Lucene search

KdeKde Sc4.6.2

2 matches found

CVE•added 2011/11/29 5:55 p.m.•62 views

CVE-2011-3365

The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 through 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote attackers to spoof the common name (CN) of a certificate via rich text.

4.3CVSS6.7AI score0.00234EPSS

CVE•added 2011/04/27 12:55 a.m.•61 views

CVE-2011-1586

Directory traversal vulnerability in the KGetMetalink::File::isValidNameAttr function in ui/metalinkcreator/metalinker.cpp in KGet in KDE SC 4.6.2 and earlier allows remote attackers to create arbitrary files via a .. (dot dot) in the name attribute of a file element in a metalink file. NOTE: this ...

5.8CVSS6.9AI score0.024EPSS