vulnerability

CentOS Linux: CVE-2018-6790: Low: kde-workspace security and bug fix update (CESA-2019:2141)

Try Surface Command
Back to search
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Feb 7, 2018
Added
Aug 28, 2019
Modified
May 25, 2023

Description

An issue was discovered in KDE Plasma Workspace before 5.12.0. dataengines/notifications/notificationsengine.cpp allows remote attackers to discover client IP addresses via a URL in a notification, as demonstrated by the src attribute of an IMG element.

Solution(s)

centos-upgrade-kcm_colorscentos-upgrade-kde-settingscentos-upgrade-kde-settings-ksplashcentos-upgrade-kde-settings-minimalcentos-upgrade-kde-settings-plasmacentos-upgrade-kde-settings-pulseaudiocentos-upgrade-kde-style-oxygencentos-upgrade-kde-workspacecentos-upgrade-kde-workspace-debuginfocentos-upgrade-kde-workspace-develcentos-upgrade-kde-workspace-ksplash-themescentos-upgrade-kde-workspace-libscentos-upgrade-kdeclassic-cursor-themecentos-upgrade-kdelibscentos-upgrade-kdelibs-apidocscentos-upgrade-kdelibs-commoncentos-upgrade-kdelibs-debuginfocentos-upgrade-kdelibs-develcentos-upgrade-kdelibs-ktexteditorcentos-upgrade-kgreeter-pluginscentos-upgrade-khotkeyscentos-upgrade-khotkeys-libscentos-upgrade-kinfocentercentos-upgrade-kmagcentos-upgrade-kmag-debuginfocentos-upgrade-kmenueditcentos-upgrade-ksysguardcentos-upgrade-ksysguard-libscentos-upgrade-ksysguarddcentos-upgrade-kwincentos-upgrade-kwin-glescentos-upgrade-kwin-gles-libscentos-upgrade-kwin-libscentos-upgrade-libkworkspacecentos-upgrade-oxygen-cursor-themescentos-upgrade-plasma-scriptengine-pythoncentos-upgrade-plasma-scriptengine-rubycentos-upgrade-qt-settingscentos-upgrade-virtuoso-opensourcecentos-upgrade-virtuoso-opensource-debuginfocentos-upgrade-virtuoso-opensource-utils

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today