Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2018-21035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier...

8.6CVSS7.4AI score0.02281EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.28 views

RHEL 7 : qt5-qtwebsockets (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - qt5-qtwebsockets: websocket implementation allows only limited size for frames and messages therefore attacker can...

7.5CVSS6.9AI score0.02281EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.3 views

SUSE CVE-2018-21035

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...

5.3CVSS8.3AI score0.02281EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2022/04/26 7:57 p.m.15 views

CVE-2018-21035 affecting package qt5-qtsvg for versions less than 5.12.11-3

CVE-2018-21035 affecting package qt5-qtsvg for versions less than 5.12.11-3. A patched version of the package is available...

8.6CVSS7.7AI score0.02281EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.267 views

AlmaLinux 8 : qt5-qtbase and qt5-qtwebsockets (ALSA-2020:4690)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4690 advisory. - Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to...

9.3CVSS6.8AI score0.03012EPSS
Exploits3References6
CBLMariner
CBLMariner
added 2021/11/03 7:21 p.m.14 views

CVE-2018-21035 affecting package qt5-qtsvg 5.12.11-4

CVE-2018-21035 affecting package qt5-qtsvg 5.12.11-4. A patched version of the package is available...

8.6CVSS7.5AI score0.02281EPSS
Exploits1
Rosalinux
Rosalinux
added 2021/07/02 6:4 p.m.45 views

Advisory ROSA-SA-2021-1959

Software: qt 4.8.7 OS: Cobalt 7.9 CVE-ID: CVE-2014-0190 CVE-Crit: HIGH CVE-DESC: The GIF decoder in QtGui in Qt before version 5.3 allows remote attackers to cause a denial of service dereferencing a NULL pointer via invalid width and height values in a GIF image. CVE-STATUS: default CVE-REV:...

9.8CVSS7.8AI score0.06356EPSS
Exploits2
OSV
OSV
added 2021/06/23 5:11 p.m.7 views

MGASA-2021-0270 Updated qtwebsockets5 packages fix a security vulnerability

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption CVE-2018-21035...

8.6CVSS7.3AI score0.02281EPSS
Exploits1References3
Mageia
Mageia
added 2021/06/23 5:11 p.m.31 views

Updated qtwebsockets5 packages fix a security vulnerability

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption CVE-2018-21035...

8.6CVSS5AI score0.02281EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.30 views

NewStart CGSL MAIN 6.02 : qt5-qtwebsockets Vulnerability (NS-SA-2021-0085)

The remote NewStart CGSL host, running version MAIN 6.02, has qt5-qtwebsockets packages installed that are affected by a vulnerability: - In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier...

8.6CVSS7.5AI score0.02281EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.39 views

RHEL 8 : qt5-qtbase and qt5-qtwebsockets (RHSA-2020:4690)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4690 advisory. Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt...

8.6CVSS7.1AI score0.03012EPSS
Exploits3References15
AlmaLinux
AlmaLinux
added 2020/11/03 12:27 p.m.42 views

Moderate: qt5-qtbase and qt5-qtwebsockets security and bug fix update

Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fixes: qt: XML entity expansion vulnerability CVE-2015-9541 qt5-qtwebsockets: websocket implementation allows only limited size for frames and...

8.6CVSS7.4AI score0.03012EPSS
Exploits3References5
Rockylinux
Rockylinux
added 2020/11/03 12:27 p.m.48 views

qt5-qtbase and qt5-qtwebsockets security and bug fix update

An update is available for qt5-qtwebsockets. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt is a software toolkit for developing applications. The qt5-base...

8.6CVSS7.3AI score0.03012EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2020/03/06 10:40 a.m.32 views

CVE-2018-21035

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...

8.6CVSS5AI score0.02281EPSS
Exploits1References2
Circl
Circl
added 2020/02/29 12:33 a.m.2 views

CVE-2018-21035

creationtimestamp| type| source ---|---|--- 2020-02-29 00:33:10+00:00| seen| https://t.me/cibsecurity/10191...

8.6CVSS7.8AI score0.02281EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2020/02/28 9:15 p.m.23 views

CVE-2018-21035

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption...

8.6CVSS7.1AI score0.02281EPSS
Exploits1References2
CVE
CVE
added 2020/02/28 7:17 p.m.197 views

CVE-2018-21035

CVE-2018-21035 affects Qt’s WebSocket implementation in Qt up to 5.14.1, where frames and messages are limited to 2 GB and this limit cannot be configured, enabling potential memory-based DoS. The vulnerability is documented across multiple advisories (e.g., MiracleLinux, Rocky Linux, AlmaLinux, ...

8.6CVSS7.1AI score0.02281EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder