Vulnerability Description
Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability in The Qt Company Qt on Windows, MacOS, Linux, iOS, Android, x86, ARM, 64 bit, 32 bit allows Excessive Allocation. This issue affects users of the Text component in Qt Quick. Missing validation of the width and height in the <img> tag could cause an application to become unresponsive. This issue affects Qt: from 5.0.0 through 6.5.10, from 6.6.0 through 6.8.5, from 6.9.0 through 6.10.0.
Related Weaknesses (CWE)
References
- https://codereview.qt-project.org/c/qt/qtdeclarative/+/687239
- https://codereview.qt-project.org/c/qt/qtdeclarative/+/687766
FAQ
What is CVE-2025-12385?
CVE-2025-12385 is a documented vulnerability. Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability in The Qt Company Qt on Windows, MacOS, Linux, iOS, Android, x86, ARM, 64 bit, 32...
How severe is CVE-2025-12385?
CVSS scoring is not yet available for CVE-2025-12385. Check NVD for updates.
Is there a patch for CVE-2025-12385?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.