Vulnerabilities > CVE-2015-9541 - XML Entity Expansion vulnerability in multiple products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

fedoraproject

CWE-776

nessus

NVD

Published: 2020-01-24

Updated: 2023-11-07

Summary

Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.

Vulnerable Configurations

Part	Description	Count
Application	Qt QT QT 5.5.0 QT QT 5.5.1 QT QT 5.5.2 QT QT 5.6.0 QT QT 5.6.1 QT QT 5.6.1-1 QT QT 5.6.2 QT QT 5.6.3 QT QT 5.7 QT QT 5.7.0 QT QT 5.7.1 QT QT 5.8.0 QT QT 5.9.0 QT QT 5.9.1 QT QT 5.9.2 QT QT 5.9.3 QT QT 5.9.4 QT QT 5.9.5 QT QT 5.9.6 QT QT 5.9.7 QT QT 5.9.8 QT QT 5.9.9 QT QT 5.9.10 QT QT 5.10.0 QT QT 5.10.1 QT QT 5.11.0 QT QT 5.11.1 QT QT 5.11.2 QT QT 5.11.3 QT QT 5.12.0 QT QT 5.12.1 QT QT 5.12.2 QT QT 5.12.3 QT QT 5.12.4 QT QT 5.12.5 QT QT 5.12.6 QT QT 5.12.7	94
OS	Fedoraproject Fedoraproject Fedora 31 Fedoraproject Fedora 32	2

Common Weakness Enumeration (CWE)

CWE-776 - Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

Nessus

NASL family	Huawei Local Security Checks
NASL id	EULEROS_SA-2020-1323.NASL
description	According to the version of the qt packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.(CVE-2015-9541) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-05-06
modified	2020-03-23
plugin id	134814
published	2020-03-23
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134814
title	EulerOS 2.0 SP5 : qt (EulerOS-SA-2020-1323)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2020-3069E44BE5.NASL
description	Security fix for CVE-2015-9541 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-05-03
modified	2020-04-27
plugin id	135990
published	2020-04-27
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/135990
title	Fedora 31 : qt5-qtbase (2020-3069e44be5)

NASL family	Huawei Local Security Checks
NASL id	EULEROS_SA-2020-1299.NASL
description	According to the version of the qt packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.(CVE-2015-9541) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-05-03
modified	2020-03-23
plugin id	134791
published	2020-03-23
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134791
title	EulerOS 2.0 SP8 : qt (EulerOS-SA-2020-1299)

NASL family	Huawei Local Security Checks
NASL id	EULEROS_SA-2020-1431.NASL
description	According to the version of the qt packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.(CVE-2015-9541) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-05-06
modified	2020-04-15
plugin id	135560
published	2020-04-15
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/135560
title	EulerOS 2.0 SP3 : qt (EulerOS-SA-2020-1431)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References