Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain sensitive information via an invalid certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
kdelibs SSL证书验证安全绕过漏洞
Vulnerability Description
KDELibs是KDE社区的一个创建在Qt框架之上的KDE API参考库,它提供框架和众多功能来开发KDE软件,使应用程序更容易编写,并提供KDE桌面环境的一致性。 kdelibs 4.13.3之前的4.10.95版本中的POP3 kioslave的kio/usernotificationhandler.cpp文件存在安全漏洞,该漏洞源于程序没有正确生成警告通知。攻击者可借助无效的证书利用该漏洞实施中间人攻击,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A