CVE-2021-28025 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2021-28025

Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS).

Published: Aug 11, 2023
Updated: Aug 22, 2023
CVE: CVE-2021-28025
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

CWE-190

Affected Software
References

Software	From	Fixed in
qt / qt	6.2.0-beta1	6.2.0-beta1.x
qt / qt	6.2.0-beta2	6.2.0-beta2.x
qt / qt	6.2.0-alpha1	6.2.0-alpha1.x
qt / qt	5.15.1	5.15.1.x
qt / qt	6.0.2	6.0.2.x
qt / qt	6.0.0	6.0.0.x
qt / qt	6.0.0-alpha1	6.0.0-alpha1.x
qt / qt	6.0.0-beta1	6.0.0-beta1.x
qt / qt	6.0.0-beta2	6.0.0-beta2.x
qt / qt	6.0.0-beta3	6.0.0-beta3.x
qt / qt	6.0.0-beta4	6.0.0-beta4.x
qt / qt	6.0.0-beta5	6.0.0-beta5.x
qt / qt	6.0.0-rc1	6.0.0-rc1.x
qt / qt	6.0.0-rc2	6.0.0-rc2.x
qt / qt	6.2.0-beta3	6.2.0-beta3.x
qt / qt	6.2.0-beta4	6.2.0-beta4.x
qt / qt	6.2.0-rc1	6.2.0-rc1.x
qt / qt	6.2.0-rc2	6.2.0-rc2.x

https://bugreports.qt.io/browse/QTBUG-91507