PT-2025-12403 · Qt Company+4 · Qt+4

Published

2025-03-21

Updated

2025-12-15

CVE-2025-30348

CVSS v3.1

5.8

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Qt versions prior to 6.8.0

Description The issue involves a complex algorithm in QDom that includes copying an XML string and replacing parts of a string inline, which also involves relocating later data.

Recommendations For Qt versions prior to 6.8.0, update to version 6.8.0 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-407

Related Identifiers

ALT-PU-2025-12273

AZL-58948

AZL-58958

BDU:2025-16090

CVE-2025-30348

OESA-2025-1384

OESA-2025-1385

OESA-2025-1386

OESA-2025-1387

OESA-2025-1493

OESA-2025-1494

SUSE-SU-2025:03599-1

SUSE-SU-2025:3723-1

SUSE-SU-2025_03599-1

SUSE-SU-2025_3723-1

Affected Products

Alt Linux

Debian

Red Os

Suse

PT-2025-12403 · Qt Company+4 · Qt+4

CVE-2025-30348

Weakness Enumeration

Related Identifiers

Affected Products

References · 39