Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

KDE — Vulnerabilities & Security Advisories 18

Browse all 18 CVE security advisories affecting KDE. AI-powered Chinese analysis, POCs, and references for each vulnerability.

KDE serves as a free, open-source desktop environment for Linux systems, providing a comprehensive user interface and application suite. Historically, the project has faced vulnerabilities across multiple classes, including remote code execution, cross-site scripting, and privilege escalation, with 16 CVEs currently documented. While no major security incidents have been widely reported, KDE's modular architecture and regular updates help mitigate risks. The project emphasizes security through community-driven code reviews and prompt patching cycles, though its complexity occasionally introduces exploitable flaws in components like KWallet and Plasma frameworks.

Top products by KDE: KDEConnect KDE Connect information-exchange protocol plasma-login-manager Kdenlive KCoreAddons Dolphin Arianna Kleopatra messagelib KDE Connect protocol Konqueror KDE Connect verification-code protocol Krita Skanpage Konsole ark Plasma Workspace
CVE IDTitleCVSSSeverityPublished
CVE-2026-25710 Plasma Workspace 安全漏洞 — plasma-login-managerCWE-250--2026-05-13
CVE-2026-45184 Kdenlive 安全漏洞 — KdenliveCWE-829 6.5 Medium2026-05-09
CVE-2026-41526 KCoreAddons 安全漏洞 — KCoreAddonsCWE-150 6.5 Medium2026-04-28
CVE-2026-41525 Dolphin 安全漏洞 — DolphinCWE-669 6.5 Medium2026-04-28
CVE-2026-42095 Arianna 访问控制错误漏洞 — AriannaCWE-306 4.0 Medium2026-04-24
CVE-2026-41527 kleopatra 安全漏洞 — KleopatraCWE-670 6.9 Medium2026-04-21
CVE-2025-69412 messagelib 信任管理问题漏洞 — messagelibCWE-295 3.4 Low2025-12-31
CVE-2025-32900 KDE Connect 安全漏洞 — KDE Connect information-exchange protocolCWE-348 4.3 Medium2025-12-05
CVE-2025-66270 KDE Connect 安全漏洞 — KDE Connect protocolCWE-290 4.7 Medium2025-12-05
CVE-2025-32901 KDE Connect 安全漏洞 — KDEConnectCWE-1287 4.3 Medium2025-12-05
CVE-2025-32899 KDE Connect 安全漏洞 — KDEConnectCWE-1250 4.3 Medium2025-12-05
CVE-2025-32898 KDE Connect 安全特征问题漏洞 — KDE Connect verification-code protocolCWE-331 4.7 Medium2025-12-05
CVE-2025-59820 KDE Krita 安全漏洞 — KritaCWE-1284 6.7 Medium2025-11-26
CVE-2025-55174 KDE Applications 安全漏洞 — SkanpageCWE-684 3.2 Low2025-11-26
CVE-2025-49091 KDE Konsole 安全漏洞 — KonsoleCWE-670 8.2 High2025-06-11
CVE-2024-57966 KDE Ark 安全漏洞 — arkCWE-36 5.0 Medium2025-02-03
CVE-2024-1433 KDE Plasma Workspace Theme File eventpluginsmanager.cpp enabledPlugins path traversal — Plasma WorkspaceCWE-22 3.1 Low2024-02-11
CVE-2012-4512 KDE Konqueror 安全漏洞 — Konqueror 8.1 -2020-02-08

This page lists every published CVE security advisory associated with KDE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.