Outbound TCP Connection Disclosure Vulnerability in KDE HTML Thumbnailer Plugin

Outbound TCP Connection Disclosure Vulnerability in KDE HTML Thumbnailer Plugin

CVE-2018-19120 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The HTML thumbnailer plugin in KDE Applications before 18.12.0 allows attackers to trigger outbound TCP connections to arbitrary IP addresses, leading to disclosure of the source IP address.

Learn more about our Web Application Penetration Testing UK.