Okular Kde Okular

stack.watch can notify you when security vulnerabilities are reported in Kde Okular. You can add multiple products that you use with Okular to create your own personal software stack watcher.

By the Year

In 2020 there have been 1 vulnerability in Kde Okular with an average score of 5.3 out of ten. Last year Okular had 0 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2020 as compared to last year.

Year Vulnerabilities Average Score
2020 1 5.30
2019 0 0.00
2018 1 5.50

It may take a day or so for new Okular vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.

Latest Kde Okular Security Vulnerabilities

KDE Okular before 1.10.0

CVE-2020-9359 5.3 - Medium - March 24, 2020

KDE Okular before 1.10.0 allows code execution via an action link in a PDF document.

Improper Input Validation

okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a specially crafted Okular archive. This issue appears to have been corrected in version 18.08.

CVE-2018-1000801 5.5 - Medium - September 06, 2018

okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a specially crafted Okular archive. This issue appears to have been corrected in version 18.08.1

Directory traversal