Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-39936

Опубликовано: 04 июл. 2024
Источник: nvd
CVSS3: 8.6
CVSS3: 5.9
EPSS Низкий

Описание

An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*
Версия до 5.15.18 (исключая)
cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*
Версия от 6.0.0 (включая) до 6.2.13 (исключая)
cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*
Версия от 6.3.0 (включая) до 6.5.7 (исключая)
cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*
Версия от 6.6.0 (включая) до 6.7.3 (исключая)

EPSS

Процентиль: 38%
0.00167
Низкий

8.6 High

CVSS3

5.9 Medium

CVSS3

Дефекты

CWE-367
CWE-367

Связанные уязвимости

ubuntu логотип

CVE-2024-39936

CVSS3: 8.6
ubuntu
около 1 года назад

An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..

redhat логотип

CVE-2024-39936

CVSS3: 7.5
redhat
около 1 года назад

An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..

msrc логотип

CVE-2024-39936

CVSS3: 5.9
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2024-39936

CVSS3: 8.6
debian
около 1 года назад

An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2. ...

rocky логотип

RLSA-2024:4623

rocky
около 1 года назад

Important: qt5-qtbase security update

EPSS

Процентиль: 38%
0.00167
Низкий

8.6 High

CVSS3

5.9 Medium

CVSS3

Дефекты

CWE-367
CWE-367