Lucene search

[email protected]NVD:CVE-2021-28025

HistoryAug 11, 2023 - 2:15 p.m.

CVE-2021-28025

2023-08-1114:15:12

CWE-190

[email protected]

web.nvd.nist.gov

vulnerability

qsvghandler.cpp

qt qtsvg

integer overflow

denial of service

local attackers

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and 6.2, allows local attackers to cause a denial of service (DoS).

Affected configurations

NVD

Node

qtqtMatch5.15.1

qtqtMatch6.0.0-

qtqtMatch6.0.0alpha1

qtqtMatch6.0.0beta1

qtqtMatch6.0.0beta2

qtqtMatch6.0.0beta3

qtqtMatch6.0.0beta4

qtqtMatch6.0.0beta5

qtqtMatch6.0.0rc1

qtqtMatch6.0.0rc2

qtqtMatch6.0.2

qtqtMatch6.2.0alpha1

qtqtMatch6.2.0beta1

qtqtMatch6.2.0beta2

qtqtMatch6.2.0beta3

qtqtMatch6.2.0beta4

qtqtMatch6.2.0rc1

qtqtMatch6.2.0rc2

References

bugreports.qt.io/browse/QTBUG-91507

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for NVD:CVE-2021-28025

nessus2 ubuntucve1 debiancve1 redhatcve1 cve1 cvelist1 prion1 osv1 amazon1