An issue was discovered in KDE Plasma Workspace before 5.12.0. dataengines/notifications/notificationsengine.cpp allows remote attackers to discover client IP addresses via a URL in a notification, as demonstrated by the src attribute of an IMG element.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-07T02:00:00
Updated: 2024-08-05T06:10:11.350Z
Reserved: 2018-02-06T00:00:00
Link: CVE-2018-6790
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-02-07T02:29:01.373
Modified: 2024-11-21T04:11:12.390
Link: CVE-2018-6790
Redhat