KDE : Security Vulnerabilities, CVEs, Published In 2016 (Information Leak) CVSS score >= 6
kinit in KDE Frameworks before 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.
Max CVSS
8.4
EPSS Score
0.11%
Published
2016-07-13
Updated
2018-10-30
1 vulnerabilities found