GCVE - cpe:2.3:a:kde:kde-workspace:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kde:kde-workspace:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Kde (`d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850`)
Product	Kde Workspace (`69f2a409-edeb-5c5c-97da-1ff6f00c94e1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/kde/kde-workspace`	purl2cpe	2026-06-01 10:14:04.894121
`pkg:rpm/centos/kde-workspace`	purl2cpe	2026-06-01 10:14:04.894124
`pkg:rpm/fedora/kde-workspace`	purl2cpe	2026-06-01 10:14:04.894126
`pkg:rpm/opensuse/kde-workspace`	purl2cpe	2026-06-01 10:14:04.894129

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-1308`	vulnerable	2026-06-03 14:34:39.120895	Details available kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locked. Published: 2015-01-26T15:00:00.000Z Updated: 2024-08-06T04:40:18.308Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/72284 http://secunia.com/advisories/62051 https://www.kde.org/info/security/advisory-20150122-2.txt http://www.openwall.com/lists/oss-security/2015/01/22/6	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-8651`	vulnerable	2026-06-03 14:34:24.935177	Details available The KDE Clock KCM policykit helper in kde-workspace before 4.11.14 and plasma-desktop before 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument. Published: 2014-12-06T21:00:00.000Z Updated: 2024-08-06T13:26:01.645Z Open on db.gcve.eu Reference links http://lists.fedoraproject.org/pipermail/package-announce/2014-November/143781.html http://www.openwall.com/lists/oss-security/2014/11/04/9 https://security.gentoo.org/glsa/201512-12 https://www.kde.org/info/security/advisory-20141106-1.txt http://www.ubuntu.com/usn/USN-2402-1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-4133`	vulnerable	2026-06-03 14:33:09.815491	Details available kde-workspace before 4.10.5 has a memory leak in plasma desktop Published: 2019-12-10T14:36:12.000Z Updated: 2024-08-06T16:30:50.156Z Open on db.gcve.eu Reference links https://security-tracker.debian.org/tracker/CVE-2013-4133 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4133 https://access.redhat.com/security/cve/cve-2013-4133 http://www.openwall.com/lists/oss-security/2013/07/16/4 http://lists.opensuse.org/opensuse-updates/2013-08/msg00002.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-4132`	vulnerable	2026-06-03 14:33:09.812131	Details available KDE-Workspace 4.10.5 and earlier does not properly handle the return value of the glibc 2.17 crypt and pw_encrypt functions, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via (1) an invalid salt or a (2) DES or (3) MD5 encrypted password, when FIPS-140 is enable, to KDM or an (4) invalid password to KCheckPass. Published: 2013-09-16T19:00:00.000Z Updated: 2024-08-06T16:30:50.058Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2013-08/msg00002.html http://seclists.org/oss-sec/2013/q3/117 http://lists.opensuse.org/opensuse-updates/2013-07/msg00082.html http://seclists.org/oss-sec/2013/q3/120 https://git.reviewboard.kde.org/r/111261/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.