← voltar
CVE-2024-39936

CVE-2024-39936

CVSS 8.6 HIGHEPSS 0.5%CWE-367
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.6EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
04 jul 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
CVSS:3.1/AC:L/AV:N/A:N/C:H/I:N/PR:N/S:C/UI:N
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://codereview.qt-project.org/c/qt/qtbase/+/571601https://lists.debian.org/debian-lts-announce/2025/11/msg00031.html