← voltar
CVE-2024-39936

CVE-2024-39936

CVSS 8.6 HIGHEPSS 0.5%CWE-367
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..
CVSS:3.1/AC:L/AV:N/A:N/C:H/I:N/PR:N/S:C/UI:N
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://codereview.qt-project.org/c/qt/qtbase/+/571601https://lists.debian.org/debian-lts-announce/2025/11/msg00031.html