CVE-2025-55174_CVE-2025-55174

3.2 / 10

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Description

In KDE Skanpage before 25.08.0, an attempt at file overwrite can result in the contents of the new file at the beginning followed by the partial contents of the old file at the end, because of use of QIODevice::ReadWrite instead of QODevice::WriteOnly.

Basic Information

ID CVE-2025-55174

Source mitre

Published Nov 26, 2025 at 00:00

Modified Nov 26, 2025 at 05:35

Affected Product

Vendor KDE

Product Skanpage

Affected Versions KDE Skanpage 0

CWE Classification

CWE-684

References

{
    "lastseen": "",
    "description": "In KDE Skanpage before 25.08.0, an attempt at file overwrite can result in the contents of the new file at the beginning followed by the partial contents of the old file at the end, because of use of QIODevice::ReadWrite instead of QODevice::WriteOnly.",
    "published": "2025-11-26T00:00:00.000Z",
    "modified": "2025-11-26T05:35:15.255Z",
    "type": "cve",
    "title": "CVE-2025-55174",
    "source": "mitre",
    "references": "https://github.com/KDE/skanpage/tags\nhttps://invent.kde.org/utilities/skanpage/-/commit/de3ad2941054a26920e022dc7c4a3dc16c065b5a\nhttps://kde.org/info/security/advisory-20250811-1.txt",
    "id": "CVE-2025-55174",
    "bulletinFamily": "",
    "cwe": [
        "CWE-684"
    ],
    "cvelist": null,
    "sourceData": "KDE Skanpage 0",
    "sourceHref": "",
    "cvss": {
        "score": 3.2,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Skanpage",
    "version": "0",
    "vendor": "KDE",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}