Vulnerabilities > QT > QT > 5.12.11

DATE CVE VULNERABILITY TITLE RISK
2024-07-04 CVE-2024-39936 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in QT
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3.
network
high complexity
qt CWE-367
5.9
5.9
2023-12-24 CVE-2023-51714 Integer Overflow or Wraparound vulnerability in QT
An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3.x through 6.5.x before 6.5.4, and 6.6.x before 6.6.2.
network
low complexity
qt CWE-190
critical
 9.8
9.8
2023-09-18 CVE-2023-43114 Unspecified vulnerability in QT
An issue was discovered in Qt before 5.15.16, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3 on Windows.
local
low complexity
qt
5.5
5.5
2023-08-20 CVE-2023-37369 In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2, there can be an application crash in QXmlStreamReader via a crafted XML string that triggers a situation in which a prefix is greater than a length.
network
low complexity
qt debian
7.5
7.5
2023-07-13 CVE-2023-38197 Infinite Loop vulnerability in QT
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3.
network
low complexity
qt CWE-835
7.5
7.5
2023-06-05 CVE-2023-34410 Improper Certificate Validation vulnerability in QT
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2.
network
low complexity
qt CWE-295
5.3
5.3
2023-05-28 CVE-2023-32763 Classic Buffer Overflow vulnerability in QT
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1.
network
low complexity
qt CWE-120
7.5
7.5
2023-05-22 CVE-2023-33285 Out-of-bounds Read vulnerability in QT
An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1.
network
low complexity
qt CWE-125
5.3
5.3
2023-05-10 CVE-2023-32573 Divide By Zero vulnerability in multiple products
In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initialization is mishandled.
network
low complexity
qt redhat CWE-369
6.5
6.5
2023-04-15 CVE-2023-24607 Unspecified vulnerability in QT
Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4.
network
low complexity
qt
7.5
7.5