CVE-2025-66270

MEDIUM4.7EPSS 0.02%

kdeconnect - security update

發布日:2025/12/5修改日:2025/11/26
也稱為:DSA-6063-1DSA-6066-1DEBIAN-CVE-2025-66270

描述

The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49.

受影響套件(4)

CVSS 分數

來源版本嚴重程度向量
osvCVSS 3.1MEDIUM4.7CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

參考連結(1)