Qt

Qt

59 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2017-10905

  • EPSS 0.13%
  • Published 16.12.2017 02:29:07
  • Last modified 20.04.2025 01:37:25

A vulnerability in applications created using Qt for Android prior to 5.9.3 allows attackers to alter environment variables via unspecified vectors.

9.8

CVE-2017-10904

  • EPSS 0.97%
  • Published 16.12.2017 02:29:07
  • Last modified 20.04.2025 01:37:25

Qt for Android prior to 5.9.0 allows remote attackers to execute arbitrary OS commands via unspecified vectors.

7.5

CVE-2017-15011

  • EPSS 0.58%
  • Published 04.10.2017 01:29:03
  • Last modified 20.04.2025 01:37:25

The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an unspecified string.

5.1

CVE-2015-7298

  • EPSS 0.25%
  • Published 26.10.2015 14:59:10
  • Last modified 12.04.2025 10:46:40

ownCloud Desktop Client before 2.0.1, when compiled with a Qt release after 5.3.x, does not call QNetworkReply::ignoreSslErrors with the list of errors to be ignored, which makes it easier for remote attackers to conduct man-in-the-middle (MITM) atta...

6.8

CVE-2015-1860

  • EPSS 3.98%
  • Published 12.05.2015 19:59:06
  • Last modified 12.04.2025 10:46:40

Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted GIF image.

6.8

CVE-2015-1859

  • EPSS 4.4%
  • Published 12.05.2015 19:59:05
  • Last modified 12.04.2025 10:46:40

Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code ...

6.8

CVE-2015-1858

  • EPSS 2.45%
  • Published 12.05.2015 19:59:04
  • Last modified 12.04.2025 10:46:40

Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted B...

4.3

CVE-2014-0190

  • EPSS 2.8%
  • Published 08.05.2014 14:29:13
  • Last modified 12.04.2025 10:46:40

The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via invalid width and height values in a GIF image.

5

CVE-2013-4549

  • EPSS 5.22%
  • Published 23.12.2013 22:55:02
  • Last modified 11.04.2025 00:51:21

QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack.

4.3

CVE-2012-6093

  • EPSS 1.1%
  • Published 24.02.2013 19:55:00
  • Last modified 11.04.2025 00:51:21

The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an ...