Releases201
Frequency2 weeks 4 days
Last Release
Stars186
Certificate manager and GUI for OpenPGP and CMS cryptography

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
6.9 MEDIUM

KDE Kleopatra before 26.08.0 on Windows allows local users to obtain the privileges of a Kleopatra user, because there is an error in the mechanism (KUniqueService) for ensuring that only one instance is running.

< 20.07.808.8 HIGH6.5 MEDIUM

The Kleopatra component before 3.1.12 (and before 20.07.80) for GnuPG allows remote attackers to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to load an arbitrary DLL.