VYPR
Unrated severityNVD Advisory· Published Aug 26, 2014· Updated Jun 17, 2026

CVE-2014-2527

CVE-2014-2527

Description

kcleanup.cpp in KDirStat 2.7.0 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a " (double quote) character in the directory name, a different vulnerability than CVE-2014-2528.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:kdirstat_project:kdirstat:2.7.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:kdirstat_project:kdirstat:2.7.0:*:*:*:*:*:*:*
    • (no CPE)range: = 2.7.0
  • cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.