Vulnerabilities > QT > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-20 | CVE-2023-37369 | In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2, there can be an application crash in QXmlStreamReader via a crafted XML string that triggers a situation in which a prefix is greater than a length. | 7.5 |
| 2023-07-13 | CVE-2023-38197 | Infinite Loop vulnerability in QT An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. | 7.5 |
| 2023-05-28 | CVE-2023-32763 | Classic Buffer Overflow vulnerability in QT An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. | 7.5 |
| 2023-04-15 | CVE-2023-24607 | Unspecified vulnerability in QT Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. | 7.5 |
| 2023-01-12 | CVE-2022-40983 | Integer Overflow or Wraparound vulnerability in QT 6.3.2 An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. | 8.8 |
| 2023-01-12 | CVE-2022-43591 | Heap-based Buffer Overflow vulnerability in QT 6.3.2 A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. | 8.8 |
| 2022-08-22 | CVE-2021-3481 | Out-of-bounds Read vulnerability in QT A flaw was found in Qt. | 7.1 |
| 2022-02-16 | CVE-2022-25255 | Unspecified vulnerability in QT In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux and UNIX, QProcess could execute a binary from the current working directory when not found in the PATH. | 7.2 |
| 2021-08-12 | CVE-2021-38593 | Out-of-bounds Write vulnerability in multiple products Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke). | 7.5 |
| 2020-06-09 | CVE-2020-13962 | Qt 5.12.2 through 5.14.2, as used in unofficial builds of Mumble 1.3.0 and other products, mishandles OpenSSL's error queue, which can cause a denial of service to QSslSocket users. | 7.5 |