VYPR
Unrated severityNVD Advisory· Published Feb 5, 2014· Updated Jun 16, 2026

CVE-2013-2074

CVE-2013-2074

Description

kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • KDE/Kdelibs5 versions
    cpe:2.3:a:kde:kdelibs:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:kde:kdelibs:*:*:*:*:*:*:*:*range: <=4.10.3
    • cpe:2.3:a:kde:kdelibs:4.10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:kdelibs:4.10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:kdelibs:4.10.2:*:*:*:*:*:*:*
    • (no CPE)range: <=4.10.3
  • osv-coords
    Range: < 4:4.10.5-1

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.