CVE-2026-41526 | KDE KCoreAddons up to 6.24 sendInput control sequence

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability was found in KDE KCoreAddons up to 6.24. It has been rated as critical. This affects the function sendInput. The manipulation leads to improper neutralization of escape, meta, or control sequences.

This vulnerability is listed as CVE-2026-41526. The attack must be carried out locally. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-41526 | KDE KCoreAddons up to 6.24 sendInput control sequence

Post correlati

CVE-2023-38534 | OpenText Exceed Turbo X 12.5.0/12.5.1 RPC improper authentication (KB0796609)

CVE-2024-6071 | PTC Creo Elements/Direct License Server up to 20.7.0.0 Web Interface heap-based overflow (icsa-24-177-02)

CVE-2026-2107 | yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4 Log Info LoginfoController.java loadAllLoginfo/deleteLoginfo/batchDeleteLoginfo improper authorization

CVE-2023-4233 | oFono SMS Decoder stack-based overflow (ZDI-23-1859)