Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2024-36048
HistoryMay 18, 2024 - 9:15 p.m.

CVE-2024-36048

2024-05-1821:15:00
Google
osv.dev
3
cve-2024-36048
qabstractoauth
qt
network authorization
prng
vulnerability
versions 5.15.17
6.x
6.2.13
6.3.x
6.5.x
6.5.6
6.6.x
6.7.x

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON

QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.

Related

nessus 6
fedora 96
vulnrichment 1
mageia 1
openvas 88
debiancve 1
qt 1
nvd 1
cve 1
freebsd 1
ubuntucve 1
cvelist 1
nessus
nessus
Fedora 40 : deepin-qt5integration / deepin-qt5platform-plugins / dwayland / etc (2024-2e27372d4c)
2024-06-05 00:00:00
Fedora 39 : qt5-qtnetworkauth (2024-3936682805)
2024-06-05 00:00:00
FreeBSD : QtNetworkAuth -- predictable seeding of PRNG in QAbstractOAuth (f5fa174d-19de-11ef-83d8-4ccc6adda413)
2024-05-25 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: qt5-qtscxml-5.15.14-1.fc40
2024-06-05 01:41:50
[SECURITY] Fedora 40 Update: qt5-qtwebkit-5.212.0-0.87alpha4.fc40
2024-06-05 01:41:51
[SECURITY] Fedora 40 Update: qt5-qtwebsockets-5.15.14-1.fc40
2024-06-05 01:41:51
vulnrichment
vulnrichment
CVE-2024-36048
2024-05-18 00:00:00
mageia
mageia
Updated qtnetworkauth5 & qtnetworkauth6 packages fix security vulnerability
2024-05-29 21:08:09
openvas
openvas
Fedora: Security Advisory for qt6-qtlocation (FEDORA-2024-bfb8617ba3)
2024-06-07 00:00:00
Fedora: Security Advisory for qt6-qtlanguageserver (FEDORA-2024-bfb8617ba3)
2024-06-07 00:00:00
Fedora: Security Advisory for qt6 (FEDORA-2024-bfb8617ba3)
2024-06-07 00:00:00
debiancve
debiancve
CVE-2024-36048
2024-05-18 21:15:47
qt
qt
Security advisory: OAuth1 in QtNetworkAuth
2024-05-24 00:00:00
nvd
nvd
CVE-2024-36048
2024-05-18 21:15:47
cve
cve
CVE-2024-36048
2024-05-18 21:15:47
freebsd
freebsd
QtNetworkAuth -- predictable seeding of PRNG in QAbstractOAuth
2024-05-08 00:00:00
ubuntucve
ubuntucve
CVE-2024-36048
2024-05-18 00:00:00
cvelist
cvelist
CVE-2024-36048
2024-05-18 00:00:00

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON
Related for OSV:CVE-2024-36048
nessus6fedora96vulnrichment1mageia1openvas88debiancve1qt1nvd1cve1freebsd1ubuntucve1cvelist1