KDE kdelibs 4.10.0
Approved changes feed: RSS · Atom
cpe:2.3:a:kde:kdelibs:4.10.0:*:*:*:*:*:*:*
part: a version: 4.10.0 update: *
| Vendor | Kde (d8ba08cf-7ec1-5504-a5b9-f8cfa50ca850) |
|---|---|
| Product | Kdelibs (c47952ae-c524-51f6-aa27-0e7c9fa910fe) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/kde/kdelibs |
purl2cpe | 2026-06-01 10:14:05.873085 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-5033 |
vulnerable | 2026-06-03 14:34:05.300768 |
Details available
KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, related to CVE-2013-4288 and "PID reuse race conditions."
Published: 2014-08-19T18:00:00.000Z
Updated: 2024-08-06T11:34:37.288Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-2074 |
vulnerable | 2026-06-03 14:32:53.596132 |
Details available
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
Published: 2014-02-05T19:00:00.000Z
Updated: 2024-08-06T15:27:39.169Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.