Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

KDE — Vulnerabilities & Security Advisories 17

Browse all 17 CVE security advisories affecting KDE. AI-powered Chinese analysis, POCs, and references for each vulnerability.

KDE serves as a free, open-source desktop environment for Linux systems, providing a comprehensive user interface and application suite. Historically, the project has faced vulnerabilities across multiple classes, including remote code execution, cross-site scripting, and privilege escalation, with 16 CVEs currently documented. While no major security incidents have been widely reported, KDE's modular architecture and regular updates help mitigate risks. The project emphasizes security through community-driven code reviews and prompt patching cycles, though its complexity occasionally introduces exploitable flaws in components like KWallet and Plasma frameworks.

Top products by KDE: KDEConnect Konqueror Plasma Workspace ark Konsole Skanpage Krita KDE Connect verification-code protocol KDE Connect information-exchange protocol KDE Connect protocol messagelib Kleopatra Arianna Dolphin KCoreAddons Kdenlive
CVE IDTitleCVSSSeverityPublished
CVE-2026-45184 Kdenlive 26.04.1前代理参数注入漏洞 — KdenliveCWE-829 6.5 Medium2026-05-09
CVE-2026-41526 KCoreAddons 安全漏洞 — KCoreAddonsCWE-150 6.5 Medium2026-04-28
CVE-2026-41525 Dolphin 安全漏洞 — DolphinCWE-669 6.5 Medium2026-04-28
CVE-2026-42095 Arianna 访问控制错误漏洞 — AriannaCWE-306 4.0 Medium2026-04-24
CVE-2026-41527 kleopatra 安全漏洞 — KleopatraCWE-670 6.9 Medium2026-04-21
CVE-2025-69412 messagelib 信任管理问题漏洞 — messagelibCWE-295 3.4 Low2025-12-31
CVE-2025-32901 KDE Connect 安全漏洞 — KDEConnectCWE-1287 4.3 Medium2025-12-05
CVE-2025-66270 KDE Connect 安全漏洞 — KDE Connect protocolCWE-290 4.7 Medium2025-12-05
CVE-2025-32900 KDE Connect 安全漏洞 — KDE Connect information-exchange protocolCWE-348 4.3 Medium2025-12-05
CVE-2025-32899 KDE Connect 安全漏洞 — KDEConnectCWE-1250 4.3 Medium2025-12-05
CVE-2025-32898 KDE Connect 安全特征问题漏洞 — KDE Connect verification-code protocolCWE-331 4.7 Medium2025-12-05
CVE-2025-59820 KDE Krita 安全漏洞 — KritaCWE-1284 6.7 Medium2025-11-26
CVE-2025-55174 KDE Applications 安全漏洞 — SkanpageCWE-684 3.2 Low2025-11-26
CVE-2025-49091 KDE Konsole 安全漏洞 — KonsoleCWE-670 8.2 High2025-06-11
CVE-2024-57966 KDE Ark 安全漏洞 — arkCWE-36 5.0 Medium2025-02-03
CVE-2024-1433 KDE Plasma Workspace Theme File eventpluginsmanager.cpp enabledPlugins path traversal — Plasma WorkspaceCWE-22 3.1 Low2024-02-11
CVE-2012-4512 KDE Konqueror 安全漏洞 — Konqueror 8.1 -2020-02-08

This page lists every published CVE security advisory associated with KDE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.