Vulnerabilidades em The Qt Company
15 resultadosCVE-2017-10904—Qt for Android prior to 5.9.0 allows remote attackers to execute arbitrary OS commands via unspecified vectors.EPSS 2.0%CVE-2017-10905—A vulnerability in applications created using Qt for Android prior to 5.9.3 allows attackers to alter environment variables via unspecified EPSS 0.6%CVE-2025-6338CRITICALPossible denial of service with multiple incoming connections to a Schannel based server with a TLS backendEPSS 0.4%CVE-2025-5455HIGHPossible denial of service when passing malformed data in a URL to qDecodeDataUrlEPSS 0.3%CVE-2026-6210HIGHType confusion and heap-buffer-overflow in Qt SVG marker handling causing application crashEPSS 0.3%CVE-2025-5992LOWPassing values outside of expected range to QColorTransferGenericFunction can cause a denial of serviceEPSS 0.3%CVE-2025-12385HIGHImproper validation of <img> tag size in Text component parserEPSS 0.3%CVE-2025-14576HIGHPossible QML code injection in VectorImage componentEPSS 0.2%CVE-2025-5683MEDIUMWhen loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0EPSS 0.2%CVE-2025-10729CRITICALUse-after-free vulnerability in Qt SVG qsvghandler.cpp allows denial of service via crafted SVGEPSS 0.2%CVE-2025-3512MEDIUMBuffer overflow in QTextMarkdownImporterEPSS 0.2%CVE-2025-10728CRITICALUncontrolled recursion in Qt SVG moduleEPSS 0.2%CVE-2025-4211HIGHImproper Link Resolution Before File Access in QFileSystemEngine on WindowsEPSS 0.2%CVE-2025-5991LOWUse after free in QHttp2ProtocolHandlerEPSS 0.1%CVE-2025-14575LOWUncontrolled Search Path Element in Qt Network OpenSSL TLS backend allows rogue CA certificate loadingEPSS 0.1%