Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digia qt vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4549
QXmlSimpleReader in Qt prior to 5.2 allows context-dependent malicious users to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack.
Digia Qt
Qt Qt 5.0.2
NA
CVE-2010-1766
Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in WebKit before r56380, as used in Qt and other products, allows remote websockets servers to cause a denial of service (memory corruption) or possibly have u...
Digia Qt
Webkit Webkit
NA
CVE-2015-1858
Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt prior to 4.8.7 and 5.x prior to 5.4.2 allow remote malicious users to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted BMP image.
Digia Qt
Qt Qt 5.3.0
Qt Qt 5.4.1
Qt Qt 5.0.0
Qt Qt 5.0.1
Qt Qt 5.2.0
Qt Qt 5.2.1
Qt Qt 5.0.2
Qt Qt 5.1.0
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
NA
CVE-2015-1859
Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt prior to 4.8.7 and 5.x prior to 5.4.2 allow remote malicious users to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted ICO im...
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Digia Qt
Qt Qt 5.0.0
Qt Qt 5.4.1
Qt Qt 5.2.1
Qt Qt 5.3.0
Qt Qt 5.1.0
Qt Qt 5.2.0
Qt Qt 5.0.1
Qt Qt 5.0.2
NA
CVE-2015-1860
Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt prior to 4.8.7 and 5.x prior to 5.4.2 allow remote malicious users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted GIF image.
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Digia Qt
Qt Qt 5.4.1
Qt Qt 5.0.0
Qt Qt 5.0.2
Qt Qt 5.0.1
Qt Qt 5.2.0
Qt Qt 5.1.0
Qt Qt 5.3.0
Qt Qt 5.2.1
NA
CVE-2015-0295
The BMP decoder in QtGui in QT prior to 5.5 does not properly calculate the masks used to extract the color components, which allows remote malicious users to cause a denial of service (divide-by-zero and crash) via a crafted BMP file.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Opensuse Opensuse 13.1
Digia Qt
NA
CVE-2010-2621
The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a malformed request.
Qt Qt 4.6.0
Qt Qt 4.5.2
Qt Qt 4.5.3
Qt Qt 4.5.0
Qt Qt 4.2.0
Qt Qt 4.1.5
Qt Qt 4.1.0
Qt Qt 4.1.4
Digia Qt
Qt Qt 4.6.1
Qt Qt 4.4.0
Qt Qt 4.4.2
Qt Qt 4.3.5
Qt Qt 4.2.1
Qt Qt 4.1.3
Qt Qt 4.1.1
Qt Qt 4.3.3
Qt Qt 4.3.2
Qt Qt 4.3.1
Qt Qt 4.3.0
Qt Qt 4.0.0
Qt Qt 4.6.2
1 EDB exploit
NA
CVE-2010-5076
QSslSocket in Qt prior to 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle malicious users to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification ...
Digia Qt
Qt Qt 4.6.3
Qt Qt 4.6.2
Qt Qt 4.3.1
Qt Qt 4.3.0
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.6.0
Qt Qt 4.5.2
Qt Qt 4.4.3
Qt Qt 4.3.2
Qt Qt 4.2.3
Qt Qt 4.2.0
Qt Qt 4.0.1
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.0
Qt Qt 4.4.1
Qt Qt 4.1.0
Qt Qt 4.1.4
Qt Qt 4.1.3
Qt Qt 4.1.2
NA
CVE-2012-5624
The XMLHttpRequest object in Qt prior to 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle malicious users to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
Qt Qt 4.2.3
Digia Qt
Qt Qt 1.41
Qt Qt 1.44
Qt Qt 1.45
Qt Qt 1.42
Qt Qt 1.43
Qt Qt 2.0.0
Qt Qt 3.3.0
Qt Qt 2.0.1
Qt Qt 2.0.2
Qt Qt 3.3.3
Qt Qt 3.3.4
Qt Qt 3.3.1
Qt Qt 3.3.2
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 3.3.5
Qt Qt 3.3.6
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started