本ページは kde k-mail に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2006-7139 | Kmail 1.9.1 on KDE 3.5.2, with "Prefer HTML to Plain Text" enabled, allows remote attackers to cause a denial of service (crash) via an HTML e-mail with certain table and frameset tags that trigger a segmentation fault, possibly involving invalid free or delete operations. | [email protected] | 2.6 | 3.03% | 2007-03-07 | 2026-06-16 |
| CVE-2007-1265 | KMail 1.9.5 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents KMail from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection. | [email protected] | 7.8 | 2.05% | 2007-03-06 | 2026-06-16 |
| CVE-2002-0342 | Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is approximately 55 K long. | [email protected] | 5.0 | 1.74% | 2002-06-25 | 2026-06-16 |
| CVE-1999-0735 | KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories. | [email protected] | 4.6 | 0.72% | 2000-01-04 | 2026-06-16 |
| CVE-2000-0481 | Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name. | [email protected] | 5.0 | 1.88% | 1999-06-01 | 2026-06-16 |