CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Redos•added 2025/07/03 12:0 a.m.•4 views

ROS-20250703-05

A vulnerability in the cross-platform software development framework Qt is related to the fact that QAbstractOAuth in Qt Network Authorization uses only time to run PRNG Exploitation of this vulnerability could allow an attacker acting remotely to bypass authentication. of the vulnerability could...

9.8CVSS7.4AI score0.00483EPSS

Exploits0

OSV•added 2025/02/21 1:35 p.m.•1 views

OESA-2025-1142 qt6-qtnetworkauth security update

Qt6 - NetworkAuth component Security Fixes: QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.CVE-2024-36048...

9.8CVSS7AI score0.00483EPSS

Exploits0References2

Mageia•added 2024/05/29 6:8 p.m.•29 views

Updated qtnetworkauth5 & qtnetworkauth6 packages fix security vulnerability

QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values...

9.8CVSS7.2AI score0.00483EPSS

Exploits0References2

Tenable Nessus•added 2024/05/25 12:0 a.m.•15 views

FreeBSD : QtNetworkAuth -- predictable seeding of PRNG in QAbstractOAuth (f5fa174d-19de-11ef-83d8-4ccc6adda413)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f5fa174d-19de-11ef-83d8-4ccc6adda413 advisory. Andy Shaw reports: The OAuth1 implementation in QtNetworkAuth created nonces using a PRNG that was seed...

9.8CVSS5.5AI score0.00483EPSS

Exploits0References4