Vulnerability-Lookup

RHSA-2026:7620

Vulnerability from csaf_redhat - Published: 2026-04-10 23:58 - Updated: 2026-05-07 08:30

Summary

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Severity

Important

Notes

Topic: An update for Red Hat Hardened Images RPMs is now available.

Details: This update includes the following RPMs: qt5: * qt5-filesystem-5.15.18-2.1.hum1 (aarch64, x86_64) * qt5-rpm-macros-5.15.18-2.1.hum1 (noarch) * qt5-srpm-macros-5.15.18-2.1.hum1 (noarch) * qt5-5.15.18-2.1.hum1.src (src)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2025-14576

A flaw was found in the Qt SVG module and the VectorImage component in Qt Quick. This vulnerability allows a remote attacker to inject arbitrary QML/JavaScript code by tricking a user into loading a specially crafted malicious SVG file. Successful exploitation could lead to denial of service, information disclosure, or other impacts, depending on the application's privileges and data access.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://images.redhat.com/ https://access.redhat.com/errata/RHSA-2026:7620

References

URL

Category

	https://access.redhat.com/errata/RHSA-2026:7620	self
	https://images.redhat.com/	external
	https://access.redhat.com/security/cve/CVE-2025-14576	external
	https://access.redhat.com/security/updates/classi…	external
	https://security.access.redhat.com/data/csaf/v2/a…	self
	https://access.redhat.com/security/cve/CVE-2025-14576	self
	https://bugzilla.redhat.com/show_bug.cgi?id=2464114	external
	https://www.cve.org/CVERecord?id=CVE-2025-14576	external
	https://nvd.nist.gov/vuln/detail/CVE-2025-14576	external
	https://codereview.qt-project.org/c/qt/qtdeclarat…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for Red Hat Hardened Images RPMs is now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This update includes the following RPMs:\n\nqt5:\n  * qt5-filesystem-5.15.18-2.1.hum1 (aarch64, x86_64)\n  * qt5-rpm-macros-5.15.18-2.1.hum1 (noarch)\n  * qt5-srpm-macros-5.15.18-2.1.hum1 (noarch)\n  * qt5-5.15.18-2.1.hum1.src (src)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:7620",
        "url": "https://access.redhat.com/errata/RHSA-2026:7620"
      },
      {
        "category": "external",
        "summary": "https://images.redhat.com/",
        "url": "https://images.redhat.com/"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-14576",
        "url": "https://access.redhat.com/security/cve/CVE-2025-14576"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7620.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
    "tracking": {
      "current_release_date": "2026-05-07T08:30:51+00:00",
      "generator": {
        "date": "2026-05-07T08:30:51+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.9"
        }
      },
      "id": "RHSA-2026:7620",
      "initial_release_date": "2026-04-10T23:58:05+00:00",
      "revision_history": [
        {
          "date": "2026-04-10T23:58:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-06T16:35:21+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-07T08:30:51+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Hardened Images",
                "product": {
                  "name": "Red Hat Hardened Images",
                  "product_id": "Red Hat Hardened Images",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:hummingbird:1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Hardened Images"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qt5-main@src",
                "product": {
                  "name": "qt5-main@src",
                  "product_id": "qt5-main@src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/qt5@5.15.18-2.1.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qt5-main@aarch64",
                "product": {
                  "name": "qt5-main@aarch64",
                  "product_id": "qt5-main@aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/qt5-filesystem@5.15.18-2.1.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qt5-main@x86_64",
                "product": {
                  "name": "qt5-main@x86_64",
                  "product_id": "qt5-main@x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/qt5-filesystem@5.15.18-2.1.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "qt5-main@noarch",
                "product": {
                  "name": "qt5-main@noarch",
                  "product_id": "qt5-main@noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/qt5-rpm-macros@5.15.18-2.1.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qt5-main@aarch64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:qt5-main@aarch64"
        },
        "product_reference": "qt5-main@aarch64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qt5-main@noarch as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:qt5-main@noarch"
        },
        "product_reference": "qt5-main@noarch",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qt5-main@src as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:qt5-main@src"
        },
        "product_reference": "qt5-main@src",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "qt5-main@x86_64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:qt5-main@x86_64"
        },
        "product_reference": "qt5-main@x86_64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-14576",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2026-04-30T13:01:32.429694+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2464114"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Qt SVG module and the VectorImage component in Qt Quick. This vulnerability allows a remote attacker to inject arbitrary QML/JavaScript code by tricking a user into loading a specially crafted malicious SVG file. Successful exploitation could lead to denial of service, information disclosure, or other impacts, depending on the application\u0027s privileges and data access.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:qt5-main@aarch64",
          "Red Hat Hardened Images:qt5-main@noarch",
          "Red Hat Hardened Images:qt5-main@src",
          "Red Hat Hardened Images:qt5-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-14576"
        },
        {
          "category": "external",
          "summary": "RHBZ#2464114",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464114"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-14576",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-14576"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-14576",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14576"
        },
        {
          "category": "external",
          "summary": "https://codereview.qt-project.org/c/qt/qtdeclarative/+/697273",
          "url": "https://codereview.qt-project.org/c/qt/qtdeclarative/+/697273"
        }
      ],
      "release_date": "2026-04-30T12:39:40.067000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-04-10T23:58:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:qt5-main@aarch64",
            "Red Hat Hardened Images:qt5-main@noarch",
            "Red Hat Hardened Images:qt5-main@src",
            "Red Hat Hardened Images:qt5-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:7620"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:qt5-main@aarch64",
            "Red Hat Hardened Images:qt5-main@noarch",
            "Red Hat Hardened Images:qt5-main@src",
            "Red Hat Hardened Images:qt5-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "qt: Qt SVG: Arbitrary QML/JavaScript code injection via malicious SVG file"
    }
  ]
}

CVE-2025-14576 (GCVE-0-2025-14576)

Vulnerability from cvelistv5 – Published: 2026-04-30 12:39 – Updated: 2026-04-30 13:14

Title

Possible QML code injection in VectorImage component

Summary

Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loading malicious SVG files through the VectorImage component in Qt Quick. While QML execution is typically more restricted than native code execution, this could still lead to denial of service, information disclosure, or other impacts depending on the application's privilege level and data access.

Severity ?

7.4 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')
CWE-20 - Improper Input Validation

Assigner

TQtC

References

URL

Tags

https://codereview.qt-project.org/c/qt/qtdeclarat…

patch

Impacted products

	Vendor	Product	Version
	The Qt Company	Qt	Affected: 6.8.0 , ≤ 6.8.6 (python) Affected: 6.10.0 , ≤ 6.10.1 (python)

Credits

Qt Development Team

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-14576",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-30T13:13:55.418329Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-30T13:14:04.728Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://www.qt.io/",
          "defaultStatus": "unaffected",
          "modules": [
            "Qt Declarative (Qt Quick)",
            "VectorImage Component"
          ],
          "packageName": "qtdeclarative",
          "platforms": [
            "Windows",
            "MacOS",
            "Linux",
            "iOS",
            "Android",
            "x86",
            "ARM",
            "64 bit",
            "32 bit"
          ],
          "product": "Qt",
          "vendor": "The Qt Company",
          "versions": [
            {
              "lessThanOrEqual": "6.8.6",
              "status": "affected",
              "version": "6.8.0",
              "versionType": "python"
            },
            {
              "lessThanOrEqual": "6.10.1",
              "status": "affected",
              "version": "6.10.0",
              "versionType": "python"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:windows:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:macos:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:linux:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:ios:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:android:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:x86:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:arm:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:64_bit:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:32_bit:*:*:*:*:*",
                  "versionEndIncluding": "6.8.6",
                  "versionStartIncluding": "6.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:windows:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:macos:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:linux:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:ios:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:android:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:x86:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:arm:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:64_bit:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:the_qt_company:qt:*:*:32_bit:*:*:*:*:*",
                  "versionEndIncluding": "6.10.1",
                  "versionStartIncluding": "6.10.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ],
          "operator": "OR"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Qt Development Team"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eInsufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loading malicious SVG files through the VectorImage component in Qt Quick. While QML execution is typically more restricted than native code execution, this could still lead to denial of service, information disclosure, or other impacts depending on the application\u0027s privilege level and data access.\u003c/p\u003e"
            }
          ],
          "value": "Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loading malicious SVG files through the VectorImage component in Qt Quick. While QML execution is typically more restricted than native code execution, this could still lead to denial of service, information disclosure, or other impacts depending on the application\u0027s privilege level and data access."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-242",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-242 Code Injection"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "PASSIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-30T12:51:40.517Z",
        "orgId": "a59d8014-47c4-4630-ab43-e1b13cbe58e3",
        "shortName": "TQtC"
      },
      "references": [
        {
          "name": "Qt Code Review - Fix for QTBUG-142556",
          "tags": [
            "patch"
          ],
          "url": "https://codereview.qt-project.org/c/qt/qtdeclarative/+/697273"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eUpdate to Qt 6.8.7 or Qt 6.10.2 or later. As a temporary mitigation, validate and sanitize all SVG files before loading them with VectorImage, or only load SVG files from trusted sources.\u003c/p\u003e"
            }
          ],
          "value": "Update to Qt 6.8.7 or Qt 6.10.2 or later. As a temporary mitigation, validate and sanitize all SVG files before loading them with VectorImage, or only load SVG files from trusted sources."
        }
      ],
      "source": {
        "discovery": "INTERNAL"
      },
      "title": "Possible QML code injection in VectorImage component",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a59d8014-47c4-4630-ab43-e1b13cbe58e3",
    "assignerShortName": "TQtC",
    "cveId": "CVE-2025-14576",
    "datePublished": "2026-04-30T12:39:40.067Z",
    "dateReserved": "2025-12-12T12:52:21.516Z",
    "dateUpdated": "2026-04-30T13:14:04.728Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2026:7620

CVE-2025-14576 (GCVE-0-2025-14576)

Tags

Sightings

Nomenclature