Franck Dude

**Name of the Vulnerable Software and Affected Versions** Qt versions through 5.14.1 **Description** The issue is related to the WebSocket component of the Qt cross-platform software development framework, which is associated with unlimited resource allocation. This can be exploited by a remote attacker to cause a denial of service, specifically through memory consumption. The WebSocket implementation accepts up to 2GB for frames and 2GB for messages, and smaller limits cannot be configured, making it easier for attackers to cause a denial of service. **Recommendations** For Qt versions through 5.14.1, consider configuring or implementing additional limits on resource allocation for the WebSocket component to prevent excessive memory consumption until a patch is available. As a temporary workaround, restrict access to the WebSocket implementation to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.