Vulnerabilities > QT > QT > 2.0.2

DATE CVE VULNERABILITY TITLE RISK
2020-02-28 CVE-2018-21035 Allocation of Resources Without Limits or Throttling vulnerability in QT
In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages.
network
low complexity
qt CWE-770
7.5
7.5
2018-12-26 CVE-2018-19873 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in Qt before 5.11.3.
network
low complexity
qt opensuse debian canonical CWE-119
critical
 9.8
9.8
2018-12-26 CVE-2018-19871 Resource Exhaustion vulnerability in multiple products
An issue was discovered in Qt before 5.11.3.
network
low complexity
qt opensuse CWE-400
6.5
6.5
2018-12-26 CVE-2018-19870 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Qt before 5.11.3.
network
low complexity
qt debian opensuse CWE-476
8.8
8.8
2018-12-26 CVE-2018-19869 Improper Input Validation vulnerability in multiple products
An issue was discovered in Qt before 5.11.3.
network
low complexity
qt opensuse CWE-20
6.5
6.5
2018-01-09 CVE-2015-1290 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
network
low complexity
google qt opensuse CWE-119
8.8
8.8