Home > Vulnerability Database > CVE-2023-51714

Mend.io Vulnerability Database

CVE-2023-51714

Date: December 23, 2023

An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3.x through 6.5.x before 6.5.4, and 6.6.x before 6.6.2. network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check.

Language: C++

Severity Score

9.8

Related Resources (7)

Url: https://access.redhat.com/security/cve/CVE-2023-51714

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-51714

Url: https://security-tracker.debian.org/tracker/CVE-2023-51714

Url: https://lists.debian.org/debian-lts-announce/2024/04/msg00027.html

Url: https://codereview.qt-project.org/c/qt/qtbase/+/524865/3

Url: https://codereview.qt-project.org/c/qt/qtbase/+/524864

Url: https://www.mend.io/vulnerability-database/CVE-2023-51714

Severity Score

9.8

Weakness Type (CWE)

Integer Overflow or Wraparound

CWE-190

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-51714

Date: December 23, 2023

Language: C++

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?