GCVE - cpe:2.3:o:kde:kde:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:kde:kde:*:*:*:*:*:*:*:*

part: o version: * update: *

Vendor	Kde (`d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850`)
Product	Kde (`a408b698-7d8a-5093-91eb-ad30be28638d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-4514`	vulnerable	2026-06-03 14:32:19.287857	Details available rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part." Published: 2012-11-11T11:00:00.000Z Updated: 2024-08-06T20:35:09.931Z Open on db.gcve.eu Reference links https://bugs.kde.org/show_bug.cgi?id=271528 http://quickgit.kde.org/index.php?p=kdelibs.git&a=commitdiff&h=65464349951e0df9b5d80c2eb3cc7458d54923ae http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc http://www.openwall.com/lists/oss-security/2012/10/11/11 http://archives.neohapsis.com/archives/bugtraq/2012-11/0005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-5963`	vulnerable	2026-06-03 14:28:28.216461	Details available Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors. Published: 2007-12-19T23:00:00.000Z Updated: 2024-08-07T15:47:00.577Z Open on db.gcve.eu Reference links http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00031.html https://exchange.xforce.ibmcloud.com/vulnerabilities/39168 http://securityreason.com/securityalert/3469 http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00038.html http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0268	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-1920`	vulnerable	2026-06-03 14:27:00.623993	Details available The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote attackers to obtain sensitive information. Published: 2005-07-26T04:00:00.000Z Updated: 2024-08-07T22:06:57.747Z Open on db.gcve.eu Reference links http://www.novell.com/linux/security/advisories/2005_18_sr.html http://www.securityfocus.com/bid/14297 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9434 http://www.debian.org/security/2005/dsa-804 http://securitytracker.com/id?1014512	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0689`	vulnerable	2026-06-03 14:26:36.512132	Details available KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files. Published: 2004-08-19T04:00:00.000Z Updated: 2024-08-08T00:24:27.110Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9334 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864 http://secunia.com/advisories/12276/ https://exchange.xforce.ibmcloud.com/vulnerabilities/16963 http://www.debian.org/security/2004/dsa-539	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2003-0370`	vulnerable	2026-06-03 14:26:25.437951	Details available Konqueror Embedded and KDE 2.2.2 and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates via a man-in-the-middle attack. Published: 2003-06-05T04:00:00.000Z Updated: 2024-08-08T01:50:47.981Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2003-192.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-May/004983.html http://www.turbolinux.com/security/TLSA-2003-36.txt http://www.redhat.com/support/errata/RHSA-2003-193.html http://www.securityfocus.com/archive/1/320707	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1268`	vulnerable	2026-06-03 14:25:42.130829	Details available Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-01T17:11:01.695Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/1645 http://lists.kde.org/?l=kde-devel&m=91560433413263&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1267`	vulnerable	2026-06-03 14:25:42.130593	Details available KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-01T17:11:01.665Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=87602167420906&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/1646	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-1106`	vulnerable	2026-06-03 14:25:41.938396	Details available Buffer overflow in kppp in KDE allows local users to gain root access via a long -c (account_name) command line argument. Published: 2001-09-12T04:00:00.000Z Updated: 2024-08-01T17:02:53.650Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/9121 https://exchange.xforce.ibmcloud.com/vulnerabilities/1643 http://www.securityfocus.com/bid/92	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.