Unrated severityNVD Advisory· Published Jul 1, 2014· Updated May 6, 2026
CVE-2014-3494
CVE-2014-3494
Description
kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain sensitive information via an invalid certificate.
Affected products
24cpe:2.3:a:kde:kdelibs:4.10.97:*:*:*:*:*:*:*+ 22 more
- cpe:2.3:a:kde:kdelibs:4.10.97:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.0:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.5:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.80:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.90:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.95:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.11.97:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.0:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.5:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.80:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.90:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.95:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.12.97:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kdelibs:4.13.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- quickgit.kde.orgnvdExploitPatch
- www.kde.org/info/security/advisory-20140618-1.txtnvdVendor Advisory
- lists.opensuse.org/opensuse-updates/2015-03/msg00068.htmlnvd
- www.securityfocus.com/bid/68113nvd
News mentions
0No linked articles in our index yet.