CVE-2024-39936
published 2024-07-04CVE-2024-39936: An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make…
PriorityP432medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
EPSS
0.49%
38.7th percentile
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | qt6-base | < qt6-base 6.8.2+dfsg-5 (forky) | qt6-base 6.8.2+dfsg-5 (forky) |
| debian | qtbase-opensource-src | < qt6-base 6.8.2+dfsg-5 (forky) | qt6-base 6.8.2+dfsg-5 (forky) |
| debian | qtbase-opensource-src-gles | < qt6-base 6.8.2+dfsg-5 (forky) | qt6-base 6.8.2+dfsg-5 (forky) |
| msrc | azl3_qtbase_6.6.1-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_qtbase_6.6.2-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_qt5-qtbase_5.12.11-13_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_qt5-qtbase_5.12.11-15_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| qt | qt | < 5.15.18 | 5.15.18 |
| qt | qt | >= 6.0.0 < 6.2.13 | 6.2.13 |
| qt | qt | >= 6.3.0 < 6.5.7 | 6.5.7 |
| qt | qt | >= 6.6.0 < 6.7.3 | 6.7.3 |
CVSS provenance
nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.5HIGH
vendor_debian8.6HIGH
vendor_redhat8.6HIGH
vendor_ubuntu7.5HIGH
vendor_msrc5.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
qtbase-opensource-src vulnerabilities
osv·2026-03-05·CVSS 7.5
CVE-2020-13962 [HIGH] qtbase-opensource-src vulnerabilities
qtbase-opensource-src vulnerabilities
It was discovered that Qt did not correctly handle OpenSSL's error queue.
An attacker could possibly use this issue to cause a denial of service.
This issue was only addressed in Ubuntu 20.04 LTS. (CVE-2020-13962)
It was discovered that Qt incorrectly handled certain XBM image files. If a
user or automated system were tricked into opening a specially crafted PPM
file, a remote attacker could cause Qt to crash, resulting in a denial of
service. This issue was only addressed in Ubuntu 16.04 LTS and
Ubuntu 20.04 LTS. (CVE-2020-17507)
It was discovered that Qt did not correctly handle executing specific
binaries. If a user or automated system were tricked into executing a
binary at a specific file path, an attacker could cause a denial of
service or exe
GHSA
GHSA-8gfm-8wff-rjvj: An issue was discovered in HTTP2 in Qt before 5
ghsa_unreviewed·2024-07-04
CVE-2024-39936 [HIGH] CWE-367 GHSA-8gfm-8wff-rjvj: An issue was discovered in HTTP2 in Qt before 5
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
OSV
CVE-2024-39936: An issue was discovered in HTTP2 in Qt before 5
osv·2024-07-04·CVSS 5.9
CVE-2024-39936 [MEDIUM] CVE-2024-39936: An issue was discovered in HTTP2 in Qt before 5
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
Ubuntu
Qt vulnerabilities
vendor_ubuntu·2026-03-05·CVSS 7.5
CVE-2020-13962 [HIGH] Qt vulnerabilities
Title: Qt vulnerabilities
Summary: Several security issues were fixed in Qt.
It was discovered that Qt did not correctly handle OpenSSL's error queue.
An attacker could possibly use this issue to cause a denial of service.
This issue was only addressed in Ubuntu 20.04 LTS. (CVE-2020-13962)
It was discovered that Qt incorrectly handled certain XBM image files. If a
user or automated system were tricked into opening a specially crafted PPM
file, a remote attacker could cause Qt to crash, resulting in a denial of
service. This issue was only addressed in Ubuntu 16.04 LTS and
Ubuntu 20.04 LTS. (CVE-2020-17507)
It was discovered that Qt did not correctly handle executing specific
binaries. If a user or automated system were tricked into executing a
binary at a specific file path, an attacke
Microsoft
An issue was discovered in HTTP2 in Qt before 5.15.18 6.x before 6.2.13 6.3.x through 6.5.x before 6.5.7 and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an establi
vendor_msrc·2024-07-09·CVSS 5.9
CVE-2024-39936 [HIGH] CWE-367 An issue was discovered in HTTP2 in Qt before 5.15.18 6.x before 6.2.13 6.3.x through 6.5.x before 6.5.7 and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an establi
An issue was discovered in HTTP2 in Qt before 5.15.18 6.x before 6.2.13 6.3.x through 6.5.x before 6.5.7 and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early because the encrypted() signal has not yet been emitted and processed..
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025
Red Hat
qtbase: qtbase: Delay any communication until encrypted() can be responded to
vendor_redhat·2024-07-04·CVSS 8.6
CVE-2024-39936 [HIGH] CWE-367 qtbase: qtbase: Delay any communication until encrypted() can be responded to
qtbase: qtbase: Delay any communication until encrypted() can be responded to
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
A vulnerability was found in Qt where, during a TLS connection for servers supporting HTTP2, Qt may send data to a server even if the TLS certificate doesn't match the redirected address. This occurs because Qt fails to validate the certificate against the redirected address, potentially sending data to an incorrect or malicious server.
Statement: This flaw occurs because Qt does not properly validate
Debian
CVE-2024-39936: qt6-base - An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x ...
vendor_debian·2024·CVSS 8.6
CVE-2024-39936 [HIGH] CVE-2024-39936: qt6-base - An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x ...
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
Scope: local
bookworm: open
forky: resolved (fixed in 6.8.2+dfsg-5)
sid: resolved (fixed in 6.8.2+dfsg-5)
trixie: resolved (fixed in 6.8.2+dfsg-5)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-07-04
Published