Qt Excessive Resource Allocation Vulnerability in Qt Quick Text Component

Vulnerability

A vulnerability allowing excessive resource allocation has been identified in the Text component of Qt Quick, affecting multiple platforms including Windows, MacOS, Linux, iOS, Android, as well as various architectures and bit versions. The issue arises from improper validation of width and height in the <img> tag, which can lead to applications becoming unresponsive. This vulnerability impacts Qt versions 5.0.0 prior to 6.5.10, 6.6.0 prior to 6.8.5, and 6.9.0 prior to 6.10.0.

Impact

Exploitation of this vulnerability can lead to applications becoming unresponsive, causing a denial-of-service condition.

Added: Dec 3, 2025, 8:26 PM

Updated: Dec 3, 2025, 8:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.9

remediation

0.0

relevance

1.3

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.9

remediation

0.0

relevance

1.3

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qt Excessive Resource Allocation Vulnerability in Qt Quick Text Component

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating