CVE Vulnerabilities

CVE-2025-55014

Transmission of Private Resources into a New Sphere ('Resource Leak')

Published: Aug 04, 2025 | Modified: Aug 04, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The YouDao plugin for StarDict, as used in stardict 3.0.7+git20220909+dfsg-6 in Debian trixie and elsewhere, sends an X11 selection to the dict.youdao.com and dict.cn servers via cleartext HTTP.

Weakness

The product makes resources available to untrusted parties when those resources are only intended to be accessed by the product.

References