CVE-2018-19120

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address.
Configurations

Configuration 1 (hide)

cpe:2.3:a:kde:kde_applications:*:*:*:*:*:*:*:*

History

07 Nov 2023, 02:55

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWRCGXLPJHM4OFD66BINH2FIMYHRCRKF/', 'name': 'FEDORA-2018-2e64407bef', 'tags': ['Third Party Advisory'], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CWRCGXLPJHM4OFD66BINH2FIMYHRCRKF/ -

Information

Published : 2018-11-29 21:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-19120

Mitre link : CVE-2018-19120

CVE.ORG link : CVE-2018-19120


JSON object : View

Products Affected

kde

  • kde_applications
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor