Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
KSmserver in KDE Plasma Workspace (aka plasma-workspace) before 5.27.11.1 and 6.x before 6.0.5.1 allows connections via ICE based purely on the host, i.e., all local connections are accepted. This allows another user on the same machine to gain access to the session manager, e.g., use the session-restore feature to execute arbitrary code as the victim (on the next boot) via earlier use of the /tmp directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Plasma Workspace 安全漏洞
Vulnerability Description
Plasma Workspace是KDE GitHub Mirror开源的一个应用程序。用于运行基于 Plasma 的环境所需的各种组件。 Plasma Workspace 5.27.11.1之前版本、6.0.5.1之前的6.x版本存在安全漏洞,该漏洞源于KSmserver允许接受所有本地连接,从而导致攻击者可执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A