Описание
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:kde:kde:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00061
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
около 3 лет назад
KMail in KDE 1.0 provides a PGP passphrase as a command line argument to other programs, which could allow local users to obtain the passphrase and compromise the PGP keys of other users by viewing the arguments via programs that list process information, such as ps.
EPSS
Процентиль: 19%
0.00061
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other