GCVE - cpe:2.3:a:kde:konqueror:3.5.7:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kde:konqueror:3.5.7:*:*:*:*:*:*:*

part: a version: 3.5.7 update: *

Vendor	Kde (`d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850`)
Product	Konqueror (`4f2f5ab6-c769-5e47-9418-f0068486a5d8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/konqueror`	purl2cpe	2026-06-01 10:14:04.942339
`pkg:deb/ubuntu/konqueror`	purl2cpe	2026-06-01 10:14:04.942341
`pkg:github/kde/konqueror`	purl2cpe	2026-06-01 10:14:04.942343
`pkg:rpm/fedora/konqueror`	purl2cpe	2026-06-01 10:14:04.942344
`pkg:rpm/opensuse/konqueror`	purl2cpe	2026-06-01 10:14:04.942346

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-4225`	vulnerable	2026-06-03 14:28:18.077332	Details available Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion. Published: 2007-08-08T21:00:00.000Z Updated: 2024-08-07T14:46:39.372Z Open on db.gcve.eu Reference links http://securityreason.com/securityalert/2982 https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.html https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00084.html http://www.ubuntu.com/usn/usn-502-1 https://exchange.xforce.ibmcloud.com/vulnerabilities/35829	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-4224`	vulnerable	2026-06-03 14:28:18.076898	Details available KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property. Published: 2007-08-08T21:00:00.000Z Updated: 2024-08-07T14:46:39.532Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2007-0909.html http://securityreason.com/securityalert/2982 http://secunia.com/advisories/27271 https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00085.html https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-3820`	vulnerable	2026-06-03 14:28:17.215473	Details available konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed. Published: 2007-07-17T01:00:00.000Z Updated: 2024-08-07T14:28:52.474Z Open on db.gcve.eu Reference links http://alt.swiecki.net/oper1.html http://www.redhat.com/support/errata/RHSA-2007-0909.html https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00085.html https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.html http://www.securityfocus.com/bid/24918	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.