CNNVD-202510-4453 Information

Oct 31, 2025 cve

CNNVD ID

CNNVD-202510-4453

CVE-2025-23050

  • CNNVD Published: 2025-10-31

Description (Chinese)

Qt是Qt开源的一个跨平台的应用程序开发框架。 Qt 6.8.2之前版本存在缓冲区错误漏洞,该漏洞源于处理蓝牙ATT命令不当,可能导致越界读取或除以零错误。

Description (English)

Qt is a cross-platform application development framework for Qt Open Source. The previous version of Qt 6.8.2 had an error loophole in the buffer zone, which stemmed from inappropriate handling of the Bluetooth ATT orders, which could lead to cross-border reading or division by zero error.

Hazard Level

Critical

Vulnerability Type

缓冲区错误

Affected Vendor

Qt

Published

2025-10-31

Last Modified

2026-02-24

References

https://codereview.qt-project.org/q/QLowEnergyController https://www.qt.io/blog/security-advisory-qlowenergycontroller-on-linux https://access.redhat.com/security/cve/cve-2025-23050

Patch

https://www.qt.io/blog/security-advisory-qlowenergycontroller-on-linux

Share on: