qt6-qtwebengine vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the qt6-qtwebengine package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H CVE-2025-13639	<6.10.1-r1
L Use After Free	<6.10.1-r1
L Out-of-bounds Write	<6.10.1-r1
L CVE-2025-141765	<6.10.1-r1
L Out-of-bounds Write	<6.10.1-r1
L Incorrect Type Conversion or Cast	<6.10.1-r1
L Race Condition	<6.10.1-r1
L CVE-2025-13634	<6.10.1-r1
L Access of Resource Using Incompatible Type ('Type Confusion')	<6.10.1-r1
L CVE-2025-9866	<6.9.2-r1
L Out-of-bounds Write	<6.9.1-r3
L CVE-2025-8580	<6.9.1-r3
L Use After Free	<6.9.2-r1
L CVE-2025-5064	<6.8.3-r1
L CVE-2025-5281	<6.8.3-r1
L CVE-2025-0996	<6.8.2-r3
H Out-of-bounds Write	<6.8.2-r3
H Out-of-bounds Read	<6.8.2-r3
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r6
H CVE-2024-10229	<6.7.2-r6
H Use After Free	<6.7.2-r5
L External Control of Assumed-Immutable Web Parameter	<6.8.2-r3
H Out-of-bounds Write	<6.7.2-r3
H Use After Free	<6.7.2-r2
L CVE-2024-6992	<6.7.2-r2
C Access of Resource Using Incompatible Type ('Type Confusion')	<6.6.3-r5
L Exposure of Sensitive Information Through Metadata	<6.8.2-r3
C Use After Free	<6.6.3-r4
H Use After Free	<6.6.2-r1
M CVE-2024-1672	<6.6.2-r1
H Use After Free	<6.6.1-r4
C Integer Overflow or Wraparound	<6.6.1-r1
L Use After Free	<6.9.1-r3
L Access of Resource Using Incompatible Type ('Type Confusion')	<6.9.1-r3
M CVE-2024-7975	<6.7.2-r3
H Out-of-bounds Write	<6.6.0-r1
H Use After Free	<6.6.0-r6
H Use After Free	<6.6.1-r4
L Use After Free	<6.9.2-r1
L Heap-based Buffer Overflow	<6.8.2-r3
L Race Condition	<6.10.0-r1
C Integer Overflow or Wraparound	<6.8.2-r4
L CVE-2025-12036	<6.10.0-r1
C Integer Overflow or Wraparound	<6.6.0-r1
L Use After Free	<6.8.2-r3
L CVE-2025-4051	<6.8.2-r4
L Out-of-bounds Read	<6.8.2-r3
L CVE-2025-2783	<6.8.2-r3
H CVE-2024-12694	<6.8.2-r3
L Use After Free	<6.10.0-r1
L CVE-2025-0447	<6.8.2-r3
L CVE-2025-3071	<6.8.2-r3
H CVE-2025-24855	<6.8.2-r3
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r6
L CVE-2025-0441	<6.8.2-r3
C Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r3
H Use After Free	<6.7.2-r6
M Use After Free	<6.7.2-r2
H Out-of-bounds Write	<6.7.2-r4
C Use After Free	<6.6.3-r4
H CVE-2024-3840	<6.6.3-r4
H External Control of Assumed-Immutable Web Parameter	<6.9.2-r2
H Use After Free	<6.6.3-r1
H Out-of-Bounds	<6.6.3-r1
L CVE-2025-6556	<6.9.1-r3
L External Control of Assumed-Immutable Web Parameter	<6.9.2-r2
L Use After Free	<6.9.1-r3
M CVE-2024-1671	<6.6.2-r1
H Use After Free	<6.6.1-r1
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.6.1-r3
H Use After Free	<6.6.1-r1
L External Control of Assumed-Immutable Web Parameter	<6.9.1-r3
L Use After Free	<6.8.3-r1
L External Control of Assumed-Immutable Web Parameter	<6.9.1-r3
C Cross-site Scripting (XSS)	<6.9.3-r2
M Cross-site Scripting (XSS)	<6.6.2-r1
L CVE-2025-10201	<6.9.2-r1
L CVE-2025-12429	<6.10.0-r1
C Use of Uninitialized Variable	<6.9.2-r1
L Use After Free	<6.9.1-r3
L Use After Free	<6.9.1-r3
L Improper Input Validation	<6.9.1-r3
L CVE-2025-6557	<6.9.1-r3
L CVE-2024-50602	<6.8.3-r1
L Heap-based Buffer Overflow	<6.9.2-r1
L Heap-based Buffer Overflow	<6.9.1-r3
H CVE-2025-24928	<6.10.0-r1
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r6
L CVE-2025-8881	<6.9.1-r3
L Use After Free	<6.9.2-r1
L Information Exposure	<6.9.2-r2
L Improper Input Validation	<6.9.3-r2
C Improper Validation of Specified Quantity in Input	<6.7.2-r6
C Integer Overflow or Wraparound	<6.7.2-r6
L CVE-2025-4052	<6.8.2-r4
L Race Condition	<6.9.1-r3
H Integer Overflow or Wraparound	<6.7.2-r6
L Out-of-bounds Read	<6.8.2-r3
L Stack-based Buffer Overflow	<6.8.2-r3
L Use After Free	<6.8.3-r1
L Use After Free	<6.8.2-r3
M Out-of-Bounds	<6.8.3-r1
L CVE-2025-5065	<6.8.3-r1
H Out-of-bounds Read	<6.7.2-r5
L Access of Resource Using Incompatible Type ('Type Confusion')	<6.9.1-r3
L Heap-based Buffer Overflow	<6.8.2-r3
L CVE-2025-4609	<6.8.2-r4
L Use After Free	<6.8.2-r3
M CVE-2025-4664	<6.8.2-r4
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r2
L Directory Traversal	<6.8.2-r3
L Out-of-bounds Read	<6.8.2-r3
H Integer Underflow	<6.8.2-r3
H Use After Free	<6.7.2-r2
L Heap-based Buffer Overflow	<6.8.2-r3
H CVE-2024-6101	<6.7.2-r2
L CVE-2025-0443	<6.8.2-r3
H Use After Free	<6.7.2-r2
C Out-of-bounds Write	<6.7.2-r2
M CVE-2024-6999	<6.7.2-r2
L CVE-2025-0611	<6.8.2-r3
M Use After Free	<6.6.3-r3
H Out-of-bounds Write	<6.7.2-r6
C Integer Overflow or Wraparound	<6.7.2-r6
H XML External Entity (XXE) Injection	<6.7.2-r6
C Out-of-bounds Write	<6.8.2-r3
C Use After Free	<6.6.1-r8
C Integer Underflow	<6.6.1-r7
M CVE-2024-9966	<6.7.2-r6
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r6
H CVE-2024-9965	<6.7.2-r6
M CVE-2024-0810	<6.6.1-r7
H Use After Free	<6.6.3-r3
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.6.1-r5
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r6
H Out-of-bounds Write	<6.7.2-r4
H Out-of-bounds Write	<6.7.2-r5
H Use After Free	<6.7.2-r6
H CVE-2024-55549	<6.8.2-r3
H Out-of-bounds Write	<6.7.2-r2
H Out-of-bounds Write	<6.7.2-r4
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r5
H Use After Free	<6.7.2-r4
H Use After Free	<6.6.1-r3
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.6.3-r3
H Out-of-bounds Write	<6.7.2-r3
H Out-of-bounds Write	<6.7.2-r5
H CVE-2024-7974	<6.7.2-r3
M CVE-2024-0333	<6.6.1-r4
H Use After Free	<6.6.3-r3
H Use After Free	<6.7.2-r2
H Use After Free	<6.6.0-r5
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.7.2-r4
L Race Condition	<6.7.2-r2
M Out-of-bounds Read	<6.6.3-r3
M Out-of-bounds Write	<6.6.3-r2
H CVE-2024-5836	<6.7.2-r2
H Use After Free	<6.6.0-r6
H Out-of-bounds Write	<6.7.2-r3
M CVE-2023-5484	<6.6.0-r1
H CVE-2024-2625	<6.6.3-r2
H Use After Free	<6.6.0-r1
H Out-of-Bounds	<6.6.3-r2
H Use After Free	<6.7.2-r2
H Use After Free	<6.7.2-r2
H Use After Free	<6.6.1-r7
H Out-of-bounds Write	<6.7.2-r2
H Access of Resource Using Incompatible Type ('Type Confusion')	<6.6.3-r2
H Use After Free	<6.6.1-r8
L Out-of-bounds Read	<6.10.0-r1
C Out-of-bounds Write	<6.6.1-r8
L Use After Free	<6.10.0-r1
C Out-of-bounds Write	<6.6.3-r2
H CVE-2024-7972	<6.7.2-r4
H Use After Free	<6.6.1-r3
H Out-of-bounds Write	<6.6.1-r5
H Use After Free	<6.6.1-r4
H Use After Free	<6.6.1-r8
M CVE-2023-5487	<6.6.0-r1
H Use After Free	<6.6.1-r8
H Out-of-bounds Write	<6.6.1-r4
H Insufficient Verification of Data Authenticity	<6.6.0-r2
H Out-of-bounds Write	<6.6.1-r4
H Use After Free	<6.6.1-r2
H Use After Free	<6.6.1-r3
L Use After Free	<6.10.0-r1
H Integer Overflow or Wraparound	<6.6.0-r2
L CVE-2025-12726	<6.10.0-r1
M Out-of-bounds Read	<6.6.3-r2
M CVE-2023-5486	<6.6.0-r1
L CVE-2025-12433	<6.10.0-r1
L Out-of-bounds Write	<6.10.0-r1
L CVE-2025-11216	<6.10.0-r1
M CVE-2023-5475	<6.6.0-r1
H Use After Free	<6.6.0-r1
L Improper Protection Against Physical Side Channels	<6.10.0-r1
H Out-of-Bounds	<6.7.2-r3
C CVE-2025-6965	<6.10.0-r1
L Out-of-bounds Write	<6.10.0-r1
L Out-of-bounds Read	<6.10.0-r1
L Use After Free	<6.10.0-r1

Vulnerability

Vulnerable Version

CVE-2025-13639

<6.10.1-r1