CVE-2025-30348

Опубликовано: 21 мар. 2025

Источник: nvd

CVSS3: 5.8

CVSS3: 5.3

EPSS Низкий

Описание

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).

Ссылки

https://codereview.qt-project.org/c/qt/qtbase/+/581442
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

Версия до 5.15.19 (исключая)

cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

Версия от 6.0.0 (включая) до 6.5.9 (исключая)

cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

Версия от 6.6.0 (включая) до 6.8.0 (исключая)

EPSS

Процентиль: 29%

0.00103

Низкий

5.8 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-407

Связанные уязвимости

CVE-2025-30348

CVSS3: 5.8

ubuntu

8 месяцев назад

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).

CVE-2025-30348

CVSS3: 5.8

msrc

8 месяцев назад

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).

CVE-2025-30348

CVSS3: 5.8

debian

8 месяцев назад

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involvin ...

GHSA-hc3c-6xqp-r265

CVSS3: 5.8

github

8 месяцев назад

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string (with relocation of later data).

SUSE-SU-2025:3723-1

suse-cvrf

23 дня назад

Security update for libqt5-qtbase

EPSS

Процентиль: 29%

0.00103

Низкий

5.8 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-407