Vulnerabilities > QT > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-03-21 CVE-2025-30348 Algorithmic Complexity vulnerability in QT
encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).
network
low complexity
qt CWE-407
5.3
2024-07-04 CVE-2024-39936 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in QT
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3.
network
high complexity
qt CWE-367
5.9
2023-09-18 CVE-2023-43114 Unspecified vulnerability in QT
An issue was discovered in Qt before 5.15.16, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3 on Windows.
local
low complexity
qt
5.5
2023-08-11 CVE-2021-28025 Integer Overflow or Wraparound vulnerability in QT
Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS).
local
low complexity
qt CWE-190
5.5
2023-06-05 CVE-2023-34410 Improper Certificate Validation vulnerability in multiple products
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2.
network
low complexity
debian fedoraproject qt CWE-295
5.3
2023-05-28 CVE-2023-32762 An issue was discovered in Qt before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1.
network
low complexity
debian qt
5.3
2023-05-22 CVE-2023-33285 Out-of-bounds Read vulnerability in QT
An issue was discovered in Qt 5.x before 5.15.14, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1.
network
low complexity
qt CWE-125
5.3
2023-05-10 CVE-2023-32573 Divide By Zero vulnerability in multiple products
In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initialization is mishandled.
network
low complexity
qt redhat CWE-369
6.5
2022-01-01 CVE-2021-45930 Out-of-bounds Write vulnerability in multiple products
Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (called from QPainterPath::addPath and QPathClipper::intersect).
local
low complexity
qt fedoraproject debian CWE-787
5.5
2020-11-23 CVE-2020-0569 Out-of-bounds Write vulnerability in multiple products
Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access.
5.7