cbcvebase.
CVE-2013-4549
published 2013-12-23

CVE-2013-4549: QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack.

PriorityP422medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
3.10%
86.1th percentile
QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an XML Entity Expansion (XEE) attack.

Affected

3 ranges
VendorProductVersion rangeFixed in
debianqtbase-opensource-src< qtbase-opensource-src 5.1.1+dfsg-6 (bookworm)qtbase-opensource-src 5.1.1+dfsg-6 (bookworm)
digiaqt<= 5.1.0
qtqt

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.