VYPR
Unrated severityNVD Advisory· Published Feb 28, 2020· Updated Aug 5, 2024

CVE-2018-21035

CVE-2018-21035

Description

In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service (memory consumption).

Affected products

3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.