CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23853

The LSP (Language Server Protocol) plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 tries to execute the associated LSP server binary when opening a file of a given type. If this binary is absent from the PATH, it will try running the LSP server binary in the directory of the file that was just opened (due to a misunderstanding of the QProcess API, that was never intended). This can be an untrusted directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2022-23853

Kde » Kate » Version: N/A

cpe:2.3:a:kde:kate:-
Kde » Kate » Version: 21.08.3

cpe:2.3:a:kde:kate:21.08.3
Kde » Kate » Version: 21.12.0

cpe:2.3:a:kde:kate:21.12.0
Kde » Kate » Version: 21.12.1

cpe:2.3:a:kde:kate:21.12.1
Kde » Ktexteditor » Version: N/A

cpe:2.3:a:kde:ktexteditor:-
Kde » Ktexteditor » Version: 4.100.0

cpe:2.3:a:kde:ktexteditor:4.100.0
Kde » Ktexteditor » Version: 4.99.0

cpe:2.3:a:kde:ktexteditor:4.99.0
Kde » Ktexteditor » Version: 5.0.0

cpe:2.3:a:kde:ktexteditor:5.0.0
Kde » Ktexteditor » Version: 5.1.0

cpe:2.3:a:kde:ktexteditor:5.1.0
Kde » Ktexteditor » Version: 5.10.0

cpe:2.3:a:kde:ktexteditor:5.10.0
Kde » Ktexteditor » Version: 5.11.0

cpe:2.3:a:kde:ktexteditor:5.11.0
Kde » Ktexteditor » Version: 5.12.0

cpe:2.3:a:kde:ktexteditor:5.12.0
Kde » Ktexteditor » Version: 5.13.0

cpe:2.3:a:kde:ktexteditor:5.13.0
Kde » Ktexteditor » Version: 5.14.0

cpe:2.3:a:kde:ktexteditor:5.14.0
Kde » Ktexteditor » Version: 5.15.0

cpe:2.3:a:kde:ktexteditor:5.15.0
Kde » Ktexteditor » Version: 5.16.0

cpe:2.3:a:kde:ktexteditor:5.16.0
Kde » Ktexteditor » Version: 5.17.0

cpe:2.3:a:kde:ktexteditor:5.17.0
Kde » Ktexteditor » Version: 5.18.0

cpe:2.3:a:kde:ktexteditor:5.18.0
Kde » Ktexteditor » Version: 5.19.0

cpe:2.3:a:kde:ktexteditor:5.19.0
Kde » Ktexteditor » Version: 5.2.0

cpe:2.3:a:kde:ktexteditor:5.2.0
Kde » Ktexteditor » Version: 5.20.0

cpe:2.3:a:kde:ktexteditor:5.20.0
Kde » Ktexteditor » Version: 5.21.0

cpe:2.3:a:kde:ktexteditor:5.21.0
Kde » Ktexteditor » Version: 5.22.0

cpe:2.3:a:kde:ktexteditor:5.22.0
Kde » Ktexteditor » Version: 5.23.0

cpe:2.3:a:kde:ktexteditor:5.23.0
Kde » Ktexteditor » Version: 5.24.0

cpe:2.3:a:kde:ktexteditor:5.24.0
Kde » Ktexteditor » Version: 5.25.0

cpe:2.3:a:kde:ktexteditor:5.25.0
Kde » Ktexteditor » Version: 5.26.0

cpe:2.3:a:kde:ktexteditor:5.26.0
Kde » Ktexteditor » Version: 5.27.0

cpe:2.3:a:kde:ktexteditor:5.27.0
Kde » Ktexteditor » Version: 5.28.0

cpe:2.3:a:kde:ktexteditor:5.28.0
Kde » Ktexteditor » Version: 5.29.0

cpe:2.3:a:kde:ktexteditor:5.29.0
Kde » Ktexteditor » Version: 5.3.0

cpe:2.3:a:kde:ktexteditor:5.3.0
Kde » Ktexteditor » Version: 5.30.0

cpe:2.3:a:kde:ktexteditor:5.30.0
Kde » Ktexteditor » Version: 5.31.0

cpe:2.3:a:kde:ktexteditor:5.31.0
Kde » Ktexteditor » Version: 5.32.0

cpe:2.3:a:kde:ktexteditor:5.32.0
Kde » Ktexteditor » Version: 5.33.0

cpe:2.3:a:kde:ktexteditor:5.33.0
Kde » Ktexteditor » Version: 5.34.0

cpe:2.3:a:kde:ktexteditor:5.34.0
Kde » Ktexteditor » Version: 5.35.0

cpe:2.3:a:kde:ktexteditor:5.35.0
Kde » Ktexteditor » Version: 5.36.0

cpe:2.3:a:kde:ktexteditor:5.36.0
Kde » Ktexteditor » Version: 5.37.0

cpe:2.3:a:kde:ktexteditor:5.37.0
Kde » Ktexteditor » Version: 5.38.0

cpe:2.3:a:kde:ktexteditor:5.38.0
Kde » Ktexteditor » Version: 5.39.0

cpe:2.3:a:kde:ktexteditor:5.39.0
Kde » Ktexteditor » Version: 5.4.0

cpe:2.3:a:kde:ktexteditor:5.4.0
Kde » Ktexteditor » Version: 5.40.0

cpe:2.3:a:kde:ktexteditor:5.40.0
Kde » Ktexteditor » Version: 5.41.0

cpe:2.3:a:kde:ktexteditor:5.41.0
Kde » Ktexteditor » Version: 5.42.0

cpe:2.3:a:kde:ktexteditor:5.42.0
Kde » Ktexteditor » Version: 5.43.0

cpe:2.3:a:kde:ktexteditor:5.43.0
Kde » Ktexteditor » Version: 5.44.0

cpe:2.3:a:kde:ktexteditor:5.44.0
Kde » Ktexteditor » Version: 5.45.0

cpe:2.3:a:kde:ktexteditor:5.45.0
Kde » Ktexteditor » Version: 5.46.0

cpe:2.3:a:kde:ktexteditor:5.46.0
Kde » Ktexteditor » Version: 5.47.0

cpe:2.3:a:kde:ktexteditor:5.47.0
Kde » Ktexteditor » Version: 5.48.0

cpe:2.3:a:kde:ktexteditor:5.48.0
Kde » Ktexteditor » Version: 5.49.0

cpe:2.3:a:kde:ktexteditor:5.49.0
Kde » Ktexteditor » Version: 5.5.0

cpe:2.3:a:kde:ktexteditor:5.5.0
Kde » Ktexteditor » Version: 5.50.0

cpe:2.3:a:kde:ktexteditor:5.50.0
Kde » Ktexteditor » Version: 5.51.0

cpe:2.3:a:kde:ktexteditor:5.51.0
Kde » Ktexteditor » Version: 5.52.0

cpe:2.3:a:kde:ktexteditor:5.52.0
Kde » Ktexteditor » Version: 5.53.0

cpe:2.3:a:kde:ktexteditor:5.53.0
Kde » Ktexteditor » Version: 5.54.0

cpe:2.3:a:kde:ktexteditor:5.54.0
Kde » Ktexteditor » Version: 5.55.0

cpe:2.3:a:kde:ktexteditor:5.55.0
Kde » Ktexteditor » Version: 5.56.0

cpe:2.3:a:kde:ktexteditor:5.56.0
Kde » Ktexteditor » Version: 5.57.0

cpe:2.3:a:kde:ktexteditor:5.57.0
Kde » Ktexteditor » Version: 5.58.0

cpe:2.3:a:kde:ktexteditor:5.58.0
Kde » Ktexteditor » Version: 5.59.0

cpe:2.3:a:kde:ktexteditor:5.59.0
Kde » Ktexteditor » Version: 5.6.0

cpe:2.3:a:kde:ktexteditor:5.6.0
Kde » Ktexteditor » Version: 5.60.0

cpe:2.3:a:kde:ktexteditor:5.60.0
Kde » Ktexteditor » Version: 5.61.0

cpe:2.3:a:kde:ktexteditor:5.61.0
Kde » Ktexteditor » Version: 5.62.0

cpe:2.3:a:kde:ktexteditor:5.62.0
Kde » Ktexteditor » Version: 5.7.0

cpe:2.3:a:kde:ktexteditor:5.7.0
Kde » Ktexteditor » Version: 5.8.0

cpe:2.3:a:kde:ktexteditor:5.8.0
Kde » Ktexteditor » Version: 5.9.0

cpe:2.3:a:kde:ktexteditor:5.9.0
Kde » Ktexteditor » Version: 5.90.0

cpe:2.3:a:kde:ktexteditor:5.90.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23853

Products

Pricing

Contact Us