UBUNTU-CVE-2025-66270
- Source
- https://ubuntu.com/security/CVE-2025-66270
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-66270.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2025-66270
- Upstream
- Downstream
- Related
- Published
- 2025-11-27T00:00:00Z
- Modified
- 2026-01-30T01:28:54.684802Z
- Severity
-
- 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49.
- References
Affected packages
Ubuntu:25.10 / gnome-shell-extension-gsconnect
Package
- Name
- gnome-shell-extension-gsconnect
- Purl
- pkg:deb/ubuntu/gnome-shell-extension-gsconnect@67-1?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:25.10 / kdeconnect
Package
- Name
- kdeconnect
- Purl
- pkg:deb/ubuntu/kdeconnect@25.08.1-0ubuntu2.1?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed25.08.1-0ubuntu2.1
Affected versions
24.*
24.12.3-0ubuntu2
25.*
25.04.0-0ubuntu1
25.04.0-0ubuntu2
25.04.1-0ubuntu1
25.04.2-0ubuntu2
25.04.2-1ubuntu1
25.04.3-0ubuntu1
25.07.80-0ubuntu1
25.07.90-0ubuntu1
25.08.0-0ubuntu1
25.08.1-0ubuntu1
25.08.1-0ubuntu2
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "25.08.1-0ubuntu2.1",
"binary_name": "kdeconnect"
},
{
"binary_version": "25.08.1-0ubuntu2.1",
"binary_name": "kdeconnect-libs"
},
{
"binary_version": "25.08.1-0ubuntu2.1",
"binary_name": "nautilus-kdeconnect"
},
{
"binary_version": "25.08.1-0ubuntu2.1",
"binary_name": "qml6-module-org-kde-kdeconnect"
}
]
}