CVE-2025-6338
CVE-2025-6338
9.2
CriticalPublished:
Last updated:
Source:a59d8014-47c4-4630-ab43-e1b13cbe58e3
Deferred
Weakness (CWE)
CVSS Vector
v4.0- Attack Vector
- Network
- Attack Complexity
- Low
- Attack Requirements
- None
- Privileges Required
- None
- User Interaction
- None
- Confidentiality (Vulnerable)
- None
- Integrity (Vulnerable)
- None
- Availability (Vulnerable)
- High
- Confidentiality (Subsequent)
- None
- Integrity (Subsequent)
- None
- Availability (Subsequent)
- High
Description
There is an incomplete cleanup vulnerability in Qt Network's Schannel support on Windows which can lead to a Denial of Service over a long period.This issue affects Qt from 5.15.0 through 6.8.3, from 6.9.0 before 6.9.2.
References
a59d8014-47c4-4630-ab43-e1b13cbe58e3
https://codereview.qt-project.org/c/qt/qtbase/+/651495