CVE-2021-28025

Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS).
References
Link Resource
https://bugreports.qt.io/browse/QTBUG-91507 Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:qt:qt:5.15.1:*:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:-:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta3:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta4:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta5:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta3:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta4:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:rc2:*:*:*:*:*:*

History

21 Aug 2023, 15:41

Type Values Removed Values Added
References (MISC) https://bugreports.qt.io/browse/QTBUG-91507 - (MISC) https://bugreports.qt.io/browse/QTBUG-91507 - Exploit, Issue Tracking, Vendor Advisory
CPE cpe:2.3:a:qt:qt:6.0.0:-:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta4:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta4:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta3:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta5:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.0.0:beta1:*:*:*:*:*:*
cpe:2.3:a:qt:qt:6.2.0:beta3:*:*:*:*:*:*
cpe:2.3:a:qt:qt:5.15.1:*:*:*:*:*:*:*
CWE CWE-190
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5

11 Aug 2023, 15:18

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-11 14:15

Updated : 2024-02-05 00:01


NVD link : CVE-2021-28025

Mitre link : CVE-2021-28025

CVE.ORG link : CVE-2021-28025


JSON object : View

Products Affected

qt

  • qt
CWE
CWE-190

Integer Overflow or Wraparound