6.2 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.7%
Qt through 5.14 allows an exponential XML entity expansion attack via a crafted SVG document that is mishandled in QXmlStreamReader, a related issue to CVE-2003-1564.
bugreports.qt.io/browse/QTBUG-47417
lists.fedoraproject.org/archives/list/[email protected]/message/2PT6327C64Q4RBFRWUSBKCG7SVGBWU5W/
lists.fedoraproject.org/archives/list/[email protected]/message/EZMMF4OEJAZRVKVXNO7IZWLEZVQGJN6G/