Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qt qt vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-0254
The QSharedMemory class in Qt 5.0.0, 4.8.x prior to 4.8.5, 4.7.x prior to 4.7.6, and other versions including 4.4.0 uses weak permissions (world-readable and world-writable) for shared memory segments, which allows local users to read sensitive information or modify critical prog...
Qt Qt 1.41
Qt Qt 1.44
Qt Qt 1.45
Qt Qt 1.42
Qt Qt 1.43
Qt Qt 2.0.0
Qt Qt 2.0.1
Qt Qt 2.0.2
Qt Qt 3.3.0
Qt Qt 3.3.3
Qt Qt 3.3.4
Qt Qt 3.3.1
Qt Qt 3.3.2
Qt Qt 3.3.5
Qt Qt 3.3.6
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.1.5
NA
CVE-2009-2700
src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a cr...
Qt Qt 4.2.3
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.2.1
Qt Qt 4.1.5
Qt Qt 4.3.2
Qt Qt 4.3.3
Qt Qt 4.3.0
Qt Qt 4.3.1
Qt Qt 4.4.0
Qt Qt 4.4.1
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.2
Qt Qt 4.4.3
Qt Qt 4.6.0
NA
CVE-2010-2621
The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a malformed request.
Digia Qt
Qt Qt 4.2.3
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.2.1
Qt Qt 4.1.5
Qt Qt 4.3.2
Qt Qt 4.3.3
Qt Qt 4.3.0
Qt Qt 4.3.1
Qt Qt 4.4.0
Qt Qt 4.4.1
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.2
Qt Qt 4.4.3
1 EDB exploit
NA
CVE-2010-5076
QSslSocket in Qt prior to 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle malicious users to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification ...
Qt Qt 4.2.3
Digia Qt
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.2.1
Qt Qt 4.1.5
Qt Qt 4.3.2
Qt Qt 4.3.3
Qt Qt 4.3.0
Qt Qt 4.3.1
Qt Qt 4.4.0
Qt Qt 4.4.1
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.2
Qt Qt 4.4.3
NA
CVE-2012-5624
The XMLHttpRequest object in Qt prior to 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle malicious users to force the read of arbitrary local files and possibly obtain sensitive information via a file: URL to a QML application.
Qt Qt 4.2.3
Digia Qt
Qt Qt 1.41
Qt Qt 1.44
Qt Qt 1.45
Qt Qt 1.42
Qt Qt 1.43
Qt Qt 2.0.0
Qt Qt 3.3.0
Qt Qt 2.0.1
Qt Qt 2.0.2
Qt Qt 3.3.3
Qt Qt 3.3.4
Qt Qt 3.3.1
Qt Qt 3.3.2
Qt Qt 4.0.1
Qt Qt 4.1.0
Qt Qt 3.3.5
Qt Qt 3.3.6
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
7.5
CVSSv3
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote malicious users to cause a denial of service (application crash) via an unspecified string.
Qt Qt 5.0.1
Qt Qt 5.8.0
Qt Qt 5.11.0
Qt Qt 5.0.0
Qt Qt 5.1.0
Qt Qt 5.2.0
Qt Qt 5.3.0
Qt Qt 5.4.0
Qt Qt 5.5.0
Qt Qt 5.6.0
Qt Qt 5.7.0
Qt Qt 5.9.0
Qt Qt 5.10.0
Qt Qt 5.14.0
Qt Qt 5.12.0
Qt Qt 5.10.1
Qt Qt 5.11.1
Qt Qt 5.11.2
Qt Qt 5.11.3
Qt Qt 5.12.1
Qt Qt 5.12.2
Qt Qt 5.12.3
NA
CVE-2006-4811
Integer overflow in Qt 3.3 prior to 3.3.7, 4.1 prior to 4.1.5, and 4.2 prior to 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafte...
Redhat Kdelibs 3.1.3
Qt Qt 3.3.0
Qt Qt 3.3.3
Qt Qt 3.3.4
Qt Qt 3.3.1
Qt Qt 3.3.2
Qt Qt 4.1.0
Qt Qt 3.3.5
Qt Qt 3.3.6
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.2.0
NA
CVE-2012-6093
The QSslSocket::sslErrors function in Qt prior to 4.6.5, 4.7.x prior to 4.7.6, 4.8.x prior to 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect erro...
Qt Qt 4.6.0
Qt Qt 4.6.3
Qt Qt 4.6.4
Qt Qt 4.6.1
Qt Qt 4.6.2
Qt Qt
Qt Qt 4.7.2
Qt Qt 4.7.3
Qt Qt 4.7.0
Qt Qt 4.7.1
Qt Qt 4.7.5
Qt Qt 4.7.4
Qt Qt 4.7.6
Qt Qt 4.8.2
Qt Qt 4.8.3
Qt Qt 4.8.0
Qt Qt 4.8.1
Qt Qt 4.8.4
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 11.4
NA
CVE-2015-1858
Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt prior to 4.8.7 and 5.x prior to 5.4.2 allow remote malicious users to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted BMP image.
Digia Qt
Qt Qt 5.0.1
Qt Qt 5.0.0
Qt Qt 5.1.0
Qt Qt 5.2.0
Qt Qt 5.3.0
Qt Qt 5.4.1
Qt Qt 5.0.2
Qt Qt 5.2.1
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
NA
CVE-2015-1859
Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt prior to 4.8.7 and 5.x prior to 5.4.2 allow remote malicious users to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted ICO im...
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Digia Qt
Qt Qt 5.0.1
Qt Qt 5.0.0
Qt Qt 5.1.0
Qt Qt 5.2.0
Qt Qt 5.3.0
Qt Qt 5.4.1
Qt Qt 5.0.2
Qt Qt 5.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »