vulnerability

Ubuntu: (CVE-2018-19516): kf5-messagelib vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Mar 12, 2020	Jun 26, 2025	Jun 26, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Mar 12, 2020

Added

Jun 26, 2025

Modified

Jun 26, 2025

Description

messagepartthemes/default/defaultrenderer.cpp in messagelib in KDE Applications before 18.12.0 does not properly restrict the handling of an http-equiv="REFRESH" value.

Solution

no-fix-ubuntu-package

References

CVE-2018-19516
https://attackerkb.com/topics/CVE-2018-19516
URL-https://cgit.kde.org/messagelib.git/commit/?id=34765909cdf8e55402a8567b48fb288839c61612
URL-https://www.cve.org/CVERecord?id=CVE-2018-19516
URL-https://www.kde.org/info/security/advisory-20181128-1.txt

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today