Skip to main content

Kauth

3 CVEs product

Monthly

CVE-2019-7443 HIGH PATCH This Week

KDE KAuth before 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Denial Of Service Kauth Leap Backports Fedora
NVD
CVSS 3.0
8.1
EPSS
2.4%
CVE-2017-8422 HIGH POC PATCH This Week

KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Authentication Bypass Kauth Kdelibs
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.3%
CVE-2014-5033 MEDIUM POC This Month

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

Race Condition Authentication Bypass Kde4Libs Ubuntu Linux Kauth +1
NVD
CVSS 2.0
6.9
EPSS
0.0%
EPSS 2% CVSS 8.1
HIGH PATCH This Week

KDE KAuth before 5.55 allows the passing of parameters with arbitrary types to helpers running as root over DBus via DBusHelperProxy.cpp. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Denial Of Service Kauth Leap +2
NVD
EPSS 0% CVSS 7.8
HIGH POC PATCH This Week

KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Authentication Bypass Kauth Kdelibs
NVD Exploit-DB
EPSS 0% CVSS 6.9
MEDIUM POC This Month

KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

Race Condition Authentication Bypass Kde4Libs +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy