本ページは kde kde-workspace に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2013-4133 | kde-workspace before 4.10.5 has a memory leak in plasma desktop | [email protected] | 7.5 | 2.76% | 2019-12-10 | 2026-06-16 |
| CVE-2015-1308 | kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locked. | [email protected] | 4.3 | 1.44% | 2015-01-26 | 2026-06-16 |
| CVE-2014-8651 | The KDE Clock KCM policykit helper in kde-workspace before 4.11.14 and plasma-desktop before 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument. | [email protected] | 7.2 | 0.39% | 2014-12-06 | 2026-06-16 |
| CVE-2013-4132 | KDE-Workspace 4.10.5 and earlier does not properly handle the return value of the glibc 2.17 crypt and pw_encrypt functions, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via (1) an invalid salt or a (2) DES or (3) MD5 encrypted password, when FIPS-140 is enable, to KDM or an (4) invalid password to KCheckPass. | [email protected] | 5.0 | 2.41% | 2013-09-16 | 2026-06-16 |