Kdeconnect
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Kdeconnect.
By the Year
In 2025 there have been 2 vulnerabilities in Kdeconnect with an average score of 4.3 out of ten. Kdeconnect did not have any published security vulnerabilities last year. That is, 2 more vulnerabilities have already been reported in 2025 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 2 | 4.30 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 1 | 5.50 |
It may take a day or so for new Kdeconnect vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Kdeconnect Security Vulnerabilities
KDE Connect Android <1.33.0 Unpair via crafted broadcast UDP pkt
CVE-2025-32899
4.3 - Medium
- December 05, 2025
In KDE Connect before 1.33.0 on Android, a packet can be crafted that causes two paired devices to unpair. Specifically, it is an invalid discovery packet sent over broadcast UDP.
Improper Preservation of Consistency Between Independent Representations of Shared State
KDE Connect Android 1.33.0 - Crash via Malicious UDP Dev ID
CVE-2025-32901
4.3 - Medium
- December 05, 2025
In KDE Connect before 1.33.0 on Android, malicious device IDs (sent via broadcast UDP) could cause an application crash.
Improper Validation of Specified Type of Input
In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the local network could send crafted packets
CVE-2020-26164
5.5 - Medium
- October 07, 2020
In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the local network could send crafted packets that trigger use of large amounts of CPU, memory, or network connection slots, aka a Denial of Service attack.
Resource Exhaustion
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Kdeconnect or by Kde? Click the Watch button to subscribe.
