Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qt qt vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-15518
QXmlStream in Qt 5.x prior to 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document.
Qt Qt
Debian Debian Linux 8.0
Opensuse Leap 42.3
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2018-19870
An issue exists in Qt prior to 5.11.3. A malformed GIF image causes a NULL pointer dereference in QGifHandler resulting in a segmentation fault.
Qt Qt
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2012-5360
Libavcodec in FFmpeg prior to 0.11 allows remote malicious users to execute arbitrary code via a crafted QT file.
Ffmpeg Ffmpeg
8.8
CVSSv3
CVE-2015-1290
The Google V8 engine, as used in Google Chrome prior to 44.0.2403.89 and QtWebEngineCore in Qt prior to 5.5.1, allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
Google Chrome
Qt Qt
Opensuse Leap 42.1
8.8
CVSSv3
CVE-2015-1329
Use-after-free vulnerability in oxide::qt::URLRequestDelegatedJob in oxide-qt in Ubuntu 15.04 and 14.04 LTS might allow remote malicious users to execute arbitrary code.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
8.8
CVSSv3
CVE-2015-1332
The oxide::JavaScriptDialogManager function in oxide-qt prior to 1.9.1 as packaged in Ubuntu 15.04 and Ubuntu 14.04 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a crafted website.
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Oxide Project Oxide
8.8
CVSSv3
CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote malicious user t...
Google Chrome
Xmlsoft Libxslt 1.1.29
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
8.8
CVSSv3
CVE-2017-5030
Incorrect handling of complex species in V8 in Google Chrome before 57.0.2987.98 for Linux, Windows, and Mac and 57.0.2987.108 for Android allowed a remote malicious user to execute arbitrary code via a crafted HTML page.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
8.8
CVSSv3
CVE-2017-5031
A use after free in ANGLE in Google Chrome before 57.0.2987.98 for Windows allowed a remote malicious user to perform an out of bounds memory read via a crafted HTML page.
Google Chrome
8.8
CVSSv3
CVE-2016-5182
Blink in Google Chrome before 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android had insufficient validation in bitmap handling, which allowed a remote malicious user to potentially exploit heap corruption via crafted HTML pages.
Google Chrome
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »