CVE-2026-41527: Medium severity KDE Kleopatra vulnerability

Q: What is the severity of CVE-2026-41527?

CVE-2026-41527 is rated as a medium severity vulnerability due to its potential to allow privilege escalation for local users.

Q: How do I fix CVE-2026-41527?

To mitigate CVE-2026-41527, upgrade KDE Kleopatra to version 26.08.0 or later.

Q: What types of systems are affected by CVE-2026-41527?

CVE-2026-41527 specifically affects KDE Kleopatra prior to version 26.08.0 on Windows systems.

Q: What can attackers do with CVE-2026-41527?

Attackers can exploit CVE-2026-41527 to gain elevated privileges, potentially compromising the integrity of user data.

Q: Is there a known exploit for CVE-2026-41527?

As of now, there is no widely known exploit publicly available for CVE-2026-41527.

Published Apr 21, 2026

Updated

KDE Kleopatra before 26.08.0 on Windows allows local users to obtain the privileges of a Kleopatra user, because there is an error in the mechanism (KUniqueService) for ensuring that only one instance is running.

Affected Software

1 affected component

KDE Kleopatra<26.08.0

Event History

Apr 21, 2026

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

DescriptionSeverityWeakness

Data Sourced

via NVD·10:16 PM

DescriptionSeverityWeakness

Frequently Asked Questions

What is the severity of CVE-2026-41527?

CVE-2026-41527 is rated as a medium severity vulnerability due to its potential to allow privilege escalation for local users.

How do I fix CVE-2026-41527?

To mitigate CVE-2026-41527, upgrade KDE Kleopatra to version 26.08.0 or later.

What types of systems are affected by CVE-2026-41527?

CVE-2026-41527 specifically affects KDE Kleopatra prior to version 26.08.0 on Windows systems.

What can attackers do with CVE-2026-41527?

Attackers can exploit CVE-2026-41527 to gain elevated privileges, potentially compromising the integrity of user data.

Is there a known exploit for CVE-2026-41527?