PT-2025-42451 · Qt Company · Qt
Published
2025-10-16
·
Updated
2025-10-16
·
CVE-2025-6338
CVSS v4.0
9.2
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Qt versions 5.15.0 through 6.8.3
Qt versions 6.9.0 through 6.9.2
Description
An incomplete cleanup issue exists in Qt Network's Schannel support on Windows, potentially leading to a Denial of Service. The issue can be exploited over a prolonged period, causing resource exhaustion.
Recommendations
Update to a version later than 6.8.3.
Update to a version later than 6.9.2.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qt