vulnerability
Oracle Linux: CVE-2018-6790: ELSA-2019-2141: kde-workspace security and bug fix update (LOW) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | 2018-02-08 | 2020-07-21 | 2024-11-29 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
2018-02-08
Added
2020-07-21
Modified
2024-11-29
Description
An issue was discovered in KDE Plasma Workspace before 5.12.0. dataengines/notifications/notificationsengine.cpp allows remote attackers to discover client IP addresses via a URL in a notification, as demonstrated by the src attribute of an IMG element.
Solution(s)
oracle-linux-upgrade-kcm-colorsoracle-linux-upgrade-kdeclassic-cursor-themeoracle-linux-upgrade-kdelibsoracle-linux-upgrade-kdelibs-apidocsoracle-linux-upgrade-kdelibs-commonoracle-linux-upgrade-kdelibs-develoracle-linux-upgrade-kdelibs-ktexteditororacle-linux-upgrade-kde-settingsoracle-linux-upgrade-kde-settings-ksplashoracle-linux-upgrade-kde-settings-minimaloracle-linux-upgrade-kde-settings-plasmaoracle-linux-upgrade-kde-settings-pulseaudiooracle-linux-upgrade-kde-style-oxygenoracle-linux-upgrade-kde-workspaceoracle-linux-upgrade-kde-workspace-develoracle-linux-upgrade-kde-workspace-ksplash-themesoracle-linux-upgrade-kde-workspace-libsoracle-linux-upgrade-kgreeter-pluginsoracle-linux-upgrade-khotkeysoracle-linux-upgrade-khotkeys-libsoracle-linux-upgrade-kinfocenteroracle-linux-upgrade-kmagoracle-linux-upgrade-kmenueditoracle-linux-upgrade-ksysguardoracle-linux-upgrade-ksysguarddoracle-linux-upgrade-ksysguard-libsoracle-linux-upgrade-kwinoracle-linux-upgrade-kwin-glesoracle-linux-upgrade-kwin-gles-libsoracle-linux-upgrade-kwin-libsoracle-linux-upgrade-libkworkspaceoracle-linux-upgrade-oxygen-cursor-themesoracle-linux-upgrade-plasma-scriptengine-pythonoracle-linux-upgrade-plasma-scriptengine-rubyoracle-linux-upgrade-qt-settingsoracle-linux-upgrade-virtuoso-opensourceoracle-linux-upgrade-virtuoso-opensource-utils
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.