{"id":"CVE-2024-30161","details":"In Qt 6.5.4, 6.5.5, and 6.6.2, QNetworkReply header data might be accessed via a dangling pointer in Qt for WebAssembly (wasm). (Earlier and later versions are unaffected.)","modified":"2026-04-10T05:12:03.585219Z","published":"2024-03-24T01:15:45.583Z","related":["SUSE-SU-2024:1174-1","openSUSE-SU-2024:13844-1"],"references":[{"type":"FIX","url":"https://codereview.qt-project.org/c/qt/qtbase/+/544314"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/qt/qtbase","events":[{"introduced":"0"},{"last_affected":"8ff0b254e4c3db81254782262d827f7831d15f6b"},{"introduced":"0"},{"last_affected":"c8c0c677693c047a9dbf94c2a88eb920ed11acc8"},{"introduced":"0"},{"last_affected":"dec1863c7dc63e5788b0c6c061d36e856a6ae2b2"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"6.5.4"},{"introduced":"0"},{"last_affected":"6.5.5"},{"introduced":"0"},{"last_affected":"6.6.2"}]}}],"versions":["v5.0.0-beta1","v5.0.0-beta2","v6.0.0-alpha1","v6.0.0-beta1","v6.0.0-beta2","v6.0.0-beta3","v6.0.0-beta4","v6.0.0-beta5","v6.5.0-beta1","v6.5.0-beta2","v6.5.0-beta3","v6.5.4-lts-lgpl","v6.5.5-lts-lgpl","v6.6.0-beta1","v6.6.0-beta2","v6.6.0-beta3","v6.6.0-beta4","v6.6.2"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-30161.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}