Ecosystem	Package	Version

Vulnerabilities

CVE-2025-23050

CVE-2025-23050

QLowEnergyController in Qt before 6.8.2 mishandles malformed Bluetooth ATT commands, leading to an out-of-bounds read (or division by zero). This is fixed in 5.15.19, 6.5.9, and 6.8.2.

Published Nov 12, 2025

https://access.redhat.com/security/cve/cve-2025-23050 https://bugzilla.redhat.com/show_bug.cgi?id=2408769

CVSS ScoreMedium

6.9

Ecosystem	Package	Version


rpm	qt5	5.15.14-3.el10_0
rpm	qt5	5.15.15-1.el10_0
rpm	qt5	5.15.17-1.el10_1
rpm	qt5	5.15.18-1.el10_2
rpm	qt5	5.11.1-2.el8
rpm	qt5	5.12.5-3.el8
rpm	qt5	5.15.2-1.el8
rpm	qt5	5.15.2-9.el9
rpm	qt5	5.15.3-1.el8
rpm	qt5	5.15.3-1.el9
rpm	qt5	5.15.9-1.el9
rpm	qt5-devel	5.15.14-3.el10_0
rpm	qt5-devel	5.15.15-1.el10_0
rpm	qt5-devel	5.15.17-1.el10_1
rpm	qt5-devel	5.15.18-1.el10_2
rpm	qt5-devel	5.11.1-2.el8
rpm	qt5-devel	5.12.5-3.el8
rpm	qt5-devel	5.15.2-1.el8
rpm	qt5-devel	5.15.2-9.el9
rpm	qt5-devel	5.15.3-1.el8
rpm	qt5-devel	5.15.3-1.el9
rpm	qt5-filesystem	5.15.14-3.el10_0
rpm	qt5-filesystem	5.15.15-1.el10_0
rpm	qt5-filesystem	5.15.17-1.el10_1
rpm	qt5-filesystem	5.15.18-1.el10_2
rpm	qt5-rpm-macros	5.15.14-3.el10_0
rpm	qt5-rpm-macros	5.15.15-1.el10_0
rpm	qt5-rpm-macros	5.15.17-1.el10_1
rpm	qt5-rpm-macros	5.15.18-1.el10_2
rpm	qt5-rpm-macros	5.6.1-3.el6
rpm	qt5-rpm-macros	5.6.1-6.el6
rpm	qt5-rpm-macros	5.11.1-2.el8
rpm	qt5-rpm-macros	5.12.5-3.el8
rpm	qt5-rpm-macros	5.15.2-1.el8
rpm	qt5-rpm-macros	5.15.2-9.el9
rpm	qt5-rpm-macros	5.15.3-1.el8
rpm	qt5-rpm-macros	5.15.3-1.el9
rpm	qt5-rpm-macros	5.15.9-1.el9
rpm	qt5-rpm-macros	5.6.1-10.el7
rpm	qt5-rpm-macros	5.6.2-1.el7
rpm	qt5-rpm-macros	5.9.2-1.el7
rpm	qt5-rpm-macros	5.9.2-3.el7
rpm	qt5-rpm-macros	5.9.7-2.el7
rpm	qt5-rpm-macros	5.9.7-3.el7
rpm	qt5-rpm-macros	5.9.7-4.el7
rpm	qt5-rpm-macros	5.9.7-5.0.1.el7_9
rpm	qt5-rpm-macros	5.9.7-5.el7_9
rpm	qt5-srpm-macros	5.15.14-3.el10_0
rpm	qt5-srpm-macros	5.15.15-1.el10_0
rpm	qt5-srpm-macros	5.15.17-1.el10_1

CVE-2025-23050 | Components Impacted | Sonatype Guide | Sonatype Guide