Known Vulnerabilities for products from Digia
Listed below are 17 of the newest known vulnerabilities associated with the vendor "Digia".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2015-7298 | ownCloud Desktop Client before 2.0.1, when compiled with a Qt release after 5.3.x, does not call QNetworkReply::ignoreSslErro... | 5.1 - MEDIUM | 2015-10-26 | 2021-06-16 |
| CVE-2015-1860 | Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow rem... | 6.8 - MEDIUM | 2015-05-12 | 2021-06-16 |
| CVE-2015-1859 | Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before ... | 6.8 - MEDIUM | 2015-05-12 | 2021-06-16 |
| CVE-2015-1858 | Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow rem... | 6.8 - MEDIUM | 2015-05-12 | 2021-06-16 |
| CVE-2015-0295 | The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which a... | 5 - MEDIUM | 2015-03-25 | 2018-10-30 |
| CVE-2014-0190 | The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via... | 4.3 - MEDIUM | 2014-05-08 | 2021-06-16 |
| CVE-2013-4549 | QXmlSimpleReader in Qt before 5.2 allows context-dependent attackers to cause a denial of service (memory consumption) via an... | 5 - MEDIUM | 2013-12-23 | 2023-02-13 |
| CVE-2013-4422 | SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows ... | 6.8 - MEDIUM | 2013-10-23 | 2021-06-16 |
| CVE-2013-0254 | The QSharedMemory class in Qt 5.0.0, 4.8.x before 4.8.5, 4.7.x before 4.7.6, and other versions including 4.4.0 uses weak per... | 3.6 - LOW | 2013-02-06 | 2021-06-16 |
| CVE-2012-6093 | The QSslSocket::sslErrors function in Qt before 4.6.5, 4.7.x before 4.7.6, 4.8.x before 4.8.5, when using certain versions of... | 4.3 - MEDIUM | 2013-02-24 | 2023-02-13 |
| CVE-2012-5624 | The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle atta... | 4.3 - MEDIUM | 2013-02-24 | 2023-11-07 |
| CVE-2011-3194 | Buffer overflow in the TIFF reader in gui/image/qtiffhandler.cpp in Qt 4.7.4 allows remote attackers to cause a denial of ser... | 9.3 - HIGH | 2012-06-16 | 2021-06-16 |
| CVE-2010-5076 | QSslSocket in Qt before 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate... | 4.3 - MEDIUM | 2012-06-29 | 2021-06-16 |
| CVE-2010-2621 | The QSslSocketBackendPrivate::transmit function in src_network_ssl_qsslsocket_openssl.cpp in Qt 4.6.3 and earlier allows remo... | 5 - MEDIUM | 2010-07-02 | 2021-06-16 |
| CVE-2010-1766 | Off-by-one error in the WebSocketHandshake::readServerHandshake function in websockets/WebSocketHandshake.cpp in WebCore in W... | 7.5 - HIGH | 2010-07-22 | 2013-02-07 |
| CVE-2009-2700 | src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in t... | 4.3 - MEDIUM | 2009-09-02 | 2021-06-16 |
| CVE-2006-4811 | Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.... | 6.8 - MEDIUM | 2006-10-18 | 2021-06-16 |
Known software with vulnerabilities from Digia
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Digia | Qt | 1.41 |