PT-2026-39422 · Kde · Kdenlive

Edoardo Geraci

Published

2026-05-09

Updated

2026-05-11

CVE-2026-45184

CVSS v3.1

6.5

Medium

Vector

AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions Kdenlive versions prior to 26.04.1

Description An issue exists where the software allows the injection of dangerous proxy parameters when a project file controlled by an attacker is used.

Recommendations Update to version 26.04.1.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-829

Related Identifiers

CVE-2026-45184

Affected Products

Kdenlive

PT-2026-39422 · Kde · Kdenlive

CVE-2026-45184

Weakness Enumeration

Related Identifiers

Affected Products

References · 15