Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qt qt vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2012-5360
Libavcodec in FFmpeg prior to 0.11 allows remote malicious users to execute arbitrary code via a crafted QT file.
Ffmpeg Ffmpeg
9.3
CVSSv2
CVE-2015-1290
The Google V8 engine, as used in Google Chrome prior to 44.0.2403.89 and QtWebEngineCore in Qt prior to 5.5.1, allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via a crafted web site.
Google Chrome
Qt Qt
Opensuse Leap 42.1
7.5
CVSSv2
CVE-2017-10904
Qt for Android before 5.9.0 allows remote malicious users to execute arbitrary OS commands via unspecified vectors.
Qt Qt
6.8
CVSSv2
CVE-2017-10905
A vulnerability in applications created using Qt for Android before 5.9.3 allows malicious users to alter environment variables via unspecified vectors.
Qt Qt
5
CVSSv2
CVE-2017-15011
The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote malicious users to cause a denial of service (application crash) via an unspecified string.
Qt Qt 5.9.0
Qt Qt 5.10.0
Qt Qt 5.11.0
Qt Qt 5.12.0
Qt Qt 5.14.0
Qt Qt 5.0.1
Qt Qt 5.5.0
Qt Qt 5.7.0
Qt Qt 5.11.1
Qt Qt 5.11.3
Qt Qt 5.1.0
Qt Qt 5.2.0
Qt Qt 5.3.0
Qt Qt 5.4.0
Qt Qt 5.12.2
Qt Qt 5.12.3
Qt Qt 5.12.4
Qt Qt 5.13.0
Qt Qt 5.0.0
Qt Qt 5.6.0
Qt Qt 5.8.0
Qt Qt 5.10.1
9.3
CVSSv2
CVE-2015-1329
Use-after-free vulnerability in oxide::qt::URLRequestDelegatedJob in oxide-qt in Ubuntu 15.04 and 14.04 LTS might allow remote malicious users to execute arbitrary code.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
5
CVSSv2
CVE-2015-8079
qt5-qtwebkit prior to 5.4 records private browsing URLs to its favicon database, WebpageIcons.db.
Qt Qtwebkit
6.8
CVSSv2
CVE-2015-1332
The oxide::JavaScriptDialogManager function in oxide-qt prior to 1.9.1 as packaged in Ubuntu 15.04 and Ubuntu 14.04 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a crafted website.
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Oxide Project Oxide
6.8
CVSSv2
CVE-2017-5029
The xsltAddTextString function in transform.c in libxslt 1.1.29, as used in Blink in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android, lacked a check for integer overflow during a size calculation, which allowed a remote malicious user t...
Google Chrome
Xmlsoft Libxslt 1.1.29
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
6.8
CVSSv2
CVE-2017-5030
Incorrect handling of complex species in V8 in Google Chrome before 57.0.2987.98 for Linux, Windows, and Mac and 57.0.2987.108 for Android allowed a remote malicious user to execute arbitrary code via a crafted HTML page.
Google Chrome
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »