CVE-2013-2074
Description
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an internal server error, which includes the username and password in an error message.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
1.467
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| KDE 4 core applications and libraries (USN-1842-1) libkio5_4.8.2-0ubuntu1_i386.deb | Linux |
| KDE 4 core applications and libraries (USN-1842-1) libkio5_4.8.2-0ubuntu1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234