The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the local network could send crafted packets that trigger use of large amounts of CPU, memory, or network connection slots, aka a Denial of Service attack.
Base Score: 4.9
Impact Score: 6.9
Exploitability Score: 3.9
Base Score: 5.5
Impact Score: 3.6
Exploitability Score: 1.8
|145296||GLSA-202101-16 : KDE Connect: Denial of service||Nessus||Gentoo Local Security Checks|
|141294||openSUSE Security Update : kdeconnect-kde (openSUSE-2020-1631)||Nessus||SuSE Local Security Checks|
|141149||FreeBSD : kdeconnect -- packet manipulation can be exploited in a Denial of Service attack (c71ed065-0600-11eb-8758-e0d55e2a8bf9)||Nessus||FreeBSD Local Security Checks|