VDB
WID-SEC-W-2025-2736
WID-SEC-W-2025-2736
PUBLISHED
CVSS 8.699999809265137 HIGH
Qt ist eine C++ Klassenbibliothek für die plattformübergreifende Programmierung grafischer Benutzeroberflächen.
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source QT 6.8.6 | ||
| Open Source QT 6.10.1 | ||
| Open Source QT <6.5.11 | ||
| Amazon Linux 2 | ||
| Microsoft Azure Linux azl3 | ||
| Open Source QT <6.8.6 | ||
| Open Source QT 6.5.11 | ||
| Open Source QT <6.10.1 | ||
| Fedora Linux |
Timeline
- Dec 3, 2025 CVE Published
- Jan 5, 2026 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2736.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2736 advisory
- https://www.qt.io/blog/security-advisory-improper-validation-of-img-tag-size-in-text-component-parser url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-62d125612b url
- https://msrc.microsoft.com/update-guide/ url
- https://alas.aws.amazon.com/AL2/ALAS2-2025-3101.html url
- https://alas.aws.amazon.com/AL2/ALAS2-2025-3102.html url