CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Kde: >> Kconfig Security Vulnerabilities

CVE-2019-14744

In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling of .desktop and .directory files, as demonstrated by a shell command on an Icon line in a .desktop file.

CVSS Score

7.8

EPSS Score

0.011

Published

2019-08-07

Page 1

Vulnerabilities

Vulnerable Software

Kde: >> Kconfig Security Vulnerabilities

Products

Pricing

Contact Us