KDE kmail before 5.5.2 and messagelib before 5.5.2, as distributed in KDE Applications before 17.04.2, do not ensure that a plugin's sign/encrypt action occurs during use of the Send Later feature, which allows remote attackers to obtain sensitive information by sniffing the network.
CVSS Score
7.5
EPSS Score
0.002
Published
2017-06-13
Unspecified vulnerability in kdebase allows local users to cause a denial of service (KDM login inaccessible, or resource consumption) via unknown vectors.
CVSS Score
4.7
EPSS Score
0.001
Published
2007-12-19
Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-01-06
Buffer overflow in kppp in KDE allows local users to gain root access via a long -c (account_name) command line argument.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-04-29
KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote attackers to modify arbitrary files by sending a copy command to the server.
CVSS Score
5.0
EPSS Score
0.004
Published
1997-05-05