Skip to main content

Kde Frameworks

1 CVEs product

Monthly

CVE-2016-3100 HIGH This Week

kinit in KDE Frameworks before 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Leap Opensuse Kde Frameworks
NVD
CVSS 3.0
8.4
EPSS
0.0%
EPSS 0% CVSS 8.4
HIGH This Week

kinit in KDE Frameworks before 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Leap Opensuse +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy