Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-5683

When loading a specifically crafted ICNS format image file in QImage then it will trigger a crash. This issue affects Qt from versions 6.3.0 through 6.5.9, from 6.6.0 through 6.8.4, 6.9.0. This is fixed in 6.5.10, 6.8.5 and 6.9.1.

Published

2025-06-05T06:15:27.517

Last Modified

2025-10-15T17:06:22.950

Status

Analyzed

Source

a59d8014-47c4-4630-ab43-e1b13cbe58e3

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-770

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	qt	qt	< 6.5.10	Yes
Application	qt	qt	< 6.8.5	Yes
Application	qt	qt	< 6.9.1	Yes

References

https://codereview.qt-project.org/c/qt/qtimageformats/+/644548 Patch (a59d8014-47c4-4630-ab43-e1b13cbe58e3)
https://issues.oss-fuzz.com/issues/415350704 Issue Tracking, Patch (a59d8014-47c4-4630-ab43-e1b13cbe58e3)