VYPR
High severity8.1NVD Advisory· Published Dec 23, 2016· Updated Jun 17, 2026

CVE-2016-7967

CVE-2016-7967

Description

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. Since the generated html is executed in the local file security context by default access to remote and local URLs was enabled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:kde:kmail:*:*:*:*:*:*:*:*
    Range: <=5.3.0
  • Kmail/Kmailllm-fuzzy
    Range: >=5.3.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.