CVE-2025-5992 – Qt QColorTransferGenericFunction ICC Profile Denial of Service

July 11, 2025

CVE ID : CVE-2025-5992

Published : July 11, 2025, 7:15 a.m. | 2 hours, 22 minutes ago

Description : When passing values outside of the expected range to QColorTransferGenericFunction it can cause a denial of service, for example, this can happen when passing a specifically crafted ICC profile to QColorSpace::fromICCProfile.This issue affects Qt from 6.6.0 through 6.8.3, from 6.9.0 through 6.9.1. This is fixed in 6.8.4 and 6.9.2.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6716 – WordPress Photos Plugin Stored Cross-Site Scripting

Next Article CVE-2025-5392 – “WordPress GB Forms DB Remote Code Execution”

Highlights

CVE-2025-8610 – AOMEI Cyber Backup Remote Code Execution Vulnerability

August 20, 2025

CVE ID : CVE-2025-8610

Published : Aug. 20, 2025, 5:15 p.m. | 7 hours, 35 minutes ago

Description : AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AOMEI Cyber Backup. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the StorageNode service, which listens on TCP port 9075 by default. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-26156.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Optimizing PWAs For Different Display Modes

Node.js Web App Development Costs: A 2025 Executive Pricing Guide

Google locking down Android security with upcoming developer verification requirements for sideloaded apps

Microsoft donates DocumentDB to the Linux Foundation

Google can translate your voice in real time now – try it free

The one-click Linux app I use for instant online anonymity

You can try Android 16’s new lock screen widgets – if you have one of these phones

Apple’s iPhone 17 event launch date is official – here’s everything we expect

Password Strength Estimator Validation in Laravel

Password Strength Estimator Validation in Laravel

Laravel’s Enhanced String Validation with Inverse Methods

Using SQLite in production with Laravel

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Microsoft Excel just got a Copilot function — but the new AI has some surprising limitations

Why Final Fantasy XIV fans are review‑bombing the game on Steam

Google Chrome VPN under fire for secretly screenshotting users’ browsing habits

CVE-2025-5992 – Qt QColorTransferGenericFunction ICC Profile Denial of Service

Yemen Cyber Army hacker jailed after stealing millions of people’s data

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

CodeSOD: Going Crazy

D-Spy – explore the D-Bus

CVE-2025-49447 – Fastw3b LLC FW Food Menu Unrestricted File Upload Vulnerability

Many Fuel Tank Monitoring Systems Vulnerable to Disruption

CVE-2025-8610 – AOMEI Cyber Backup Remote Code Execution Vulnerability

Windows Backup app’s new migration tool makes file transfer to another PC even easier

Copilot will generate personalized podcasts for users

CVE-2025-50492 – PHPGurukul e-Diary Management System Session Hijacking Vulnerability

CVE-2025-5992 – Qt QColorTransferGenericFunction ICC Profile Denial of Service

Related Posts