MEDIUM SeverityCVSS 3.16.5CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

CVE-2026-45184

Last updated May 09, 2026 · Published May 09, 2026

← Back to list

Description

Kdenlive before 26.04.1 allows dangerous proxy parameters when an attacker-controlled project file is used.

Affected products

1 listed

KDE:Kdenlive

Mappings

CWE

CWE-829

CAPEC

None listed.

Related

Guides

Supply Chain Security FundamentalsSBOMs, dependency verification, supplier assessment, and provenance for development teams.

Training

Dependency and Supply Chain ManagementSBOMs, lock files, and surviving the next big supply chain attack.
Artifact Signing and ProvenanceSigstore, SLSA, and proving your software is what you say it is.

CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms

Need help?Get in touch.