CVE-2025-69412 – KDE Messagelib SSL Validation Bypass

CVE ID : CVE-2025-69412

Published : Dec. 31, 2025, 11:20 p.m. | 1 hour, 4 minutes ago

Description : KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API (aka phishing API), which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration.

Severity: 3.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…