CVE-2025-32900

Vulnerability Description

In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to temporarily change the displayed information about a device, because broadcast UDP is used. This affects KDE Connect before 1.33.0 on Android, KDE Connect before 25.04 on desktop, KDE Connect before 0.5 on iOS, Valent before 1.0.0.alpha.47, and GSConnect before 59.

Vulnerability Details

Published Date

December 05, 2025

Last Modified

December 05, 2025

Source

MITRE

Vendor

KDE

Product

KDE Connect information-exchange protocol

External References

https://kdeconnect.kde.org
https://kde.org/info/security/advisory-20250418-2.txt

CVE-2025-32900

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment