2 matches found
CVE-2020-24619
CVE-2020-24619 affects Shotcut prior to 20.09.13, where an upgrade check misuses TLS via setPeerVerifyMode(QSslSocket::VerifyNone) in mainwindow.cpp. This enables a man-in-the-middle to offer a spoofed download resource. The Red Hat, Ubuntu, Ubuntu OSV, and other entries in the connected set corr...
CVE-2025-65834
CVE-2025-65834 affects Meltytech Shotcut 25.10.31, with a buffer overflow in mlt_image_fill_white triggered by processing MLT project files that specify extremely large width/height. The issue is documented across several security entries (Red Hat, SUSE/OpenSUSE, NVD, EUVD, OSV, CVE.org) and is d...