cbcvebase.

The Qt Company Qt vulnerabilities

13 known vulnerabilities affecting the_qt_company/qt.

Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH5MEDIUM2LOW3

Vulnerabilities

Page 1 of 1
CVE-2025-12385P3HIGHCVSS 8.7≥ 5.0.0, ≤ 6.5.10≥ 6.6.0, ≤ 6.8.5+1 more2025-12-03
CVE-2025-12385 [HIGH] CWE-770 CVE-2025-12385: Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in I Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability in The Qt Company Qt on Windows, MacOS, Linux, iOS, Android, x86, ARM, 64 bit, 32 bit allows Excessive Allocation. This issue affects users of the Text component in Qt Quick. Missing validation of the width and height in the tag could
nvd
CVE-2025-6338P3CRITICALCVSS 9.2≥ 5.15.0, ≤ 6.8.3≥ 6.9.0, < 6.9.22025-10-16
CVE-2025-6338 [CRITICAL] CWE-459 CVE-2025-6338: There is an incomplete cleanup vulnerability in Qt Network's Schannel support on Windows which can l There is an incomplete cleanup vulnerability in Qt Network's Schannel support on Windows which can lead to a Denial of Service over a long period.This issue affects Qt from 5.15.0 through 6.8.3, from 6.9.0 before 6.9.2.
nvd
CVE-2026-6210P3HIGHCVSS 8.7≥ 6.7.0, < 6.8.8≥ 6.9.0, < 6.11.12026-05-06
CVE-2026-6210 [HIGH] CWE-122 CVE-2026-6210: A type confusion vulnerability in Qt SVG allows an attacker to cause an application crash via a craf A type confusion vulnerability in Qt SVG allows an attacker to cause an application crash via a crafted SVG image. When processing SVG marker references, the renderer retrieves a node by its id attribute and casts it to QSvgMarker* without verifying the node type. A non-marker element (such as a element) that references itself as a marker triggers an
nvd
CVE-2025-10728P3CRITICALCVSS 9.4≥ 6.7.0, ≤ 6.8.4≥ 6.9.0, ≤ 6.9.22025-10-03
CVE-2025-10728 [CRITICAL] CWE-674 CVE-2025-10728: When the module renders a Svg file that contains a <pattern> element, it might end up rendering it r When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS
nvd
CVE-2025-5455P3HIGHCVSS 8.4≤ 5.15.18≥ 6.0.0, ≤ 6.5.8+2 more2025-06-02
CVE-2025-5455 [HIGH] CWE-20 CVE-2025-5455: An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDoc An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value (such as "data:charset,"), and Qt was built with assertions enabled, then
nvd
CVE-2025-14576P3HIGHCVSS 7.8≥ 6.8.0, ≤ 6.8.6≥ 6.10.0, ≤ 6.10.12026-04-30
CVE-2025-14576 [HIGH] CWE-20 CVE-2025-14576: Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loading malicious SVG files through the VectorImage component in Qt Quick. While QML execution is typically more restricted than native code execution, this could still lead to denial of service, information disclosure, or other impacts depending on
nvd
CVE-2025-10729P3CRITICALCVSS 9.4≥ 6.7.0, ≤ 6.8.4≥ 6.9.0, ≤ 6.9.22025-10-03
CVE-2025-10729 [CRITICAL] CWE-416 CVE-2025-10729: The module will parse a <pattern> node which is not a child of a structural node. The node will be d The module will parse a node which is not a child of a structural node. The node will be deleted after creation but might be accessed later leading to a use after free.
nvd
CVE-2024-38081P3HIGHCVSS 7.3≤ 5.15.18≥ 6.0.0, ≤ 6.5.8+1 more2024-07-09
CVE-2024-38081 [HIGH] CWE-59 CVE-2024-38081: .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
nvd
CVE-2025-5683P4MEDIUMCVSS 5.5≥ 6.3.0, ≤ 6.5.9≥ 6.6.0, ≤ 6.8.4+1 more2025-06-05
CVE-2025-5683 [MEDIUM] CWE-770 CVE-2025-5683: When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. T When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1.
nvd
CVE-2025-3512P4MEDIUMCVSS 4.8≥ 6.8.0, < 6.8.42025-04-11
CVE-2025-3512 [MEDIUM] CWE-122 CVE-2025-3512: There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incor There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to QTextMarkdownImporter to trigger the overflow.This issue affects Qt from 6.8.0 to 6.8.4. Versions up to 6.6.0 are known to be unaffected, and the fix is in 6.8.4 and later.
nvd
CVE-2025-5991P4LOWCVSS 2.1v6.9.02025-06-11
CVE-2025-5991 [LOW] CWE-416 CVE-2025-5991: There is a "Use After Free" vulnerability in Qt's QHttp2ProtocolHandler in the QtNetwork module. Thi There is a "Use After Free" vulnerability in Qt's QHttp2ProtocolHandler in the QtNetwork module. This only affects HTTP/2 handling, HTTP handling is not affected by this at all. This happens due to a race condition between how QHttp2Stream uploads the body of a POST request and the simultaneous handling of HTTP error responses. This issue only affects Q
nvd
CVE-2025-5992P4LOWCVSS 2.3≥ 6.6.0, ≤ 6.8.3≥ 6.9.0, ≤ 6.9.12025-07-11
CVE-2025-5992 [LOW] CWE-20 CVE-2025-5992: When passing values outside of the expected range to QColorTransferGenericFunction it can cause a de When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.
nvd
CVE-2025-14575P4LOWCVSS 1.8≥ 5.0.0, ≤ 5.15.19≥ 6.0.0, ≤ 6.5.9+2 more2026-05-19
CVE-2025-14575 [LOW] CWE-427 CVE-2025-14575: An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.
nvd