Shotcut
1 CVEs
product
Monthly
In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyMode(QSslSocket::VerifyNone). Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.
Information Disclosure
Shotcut
NVD
GitHub
CVSS 3.1
5.9
EPSS
0.7%
EPSS 1%
CVSS 5.9
MEDIUM
PATCH
This Month
In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyMode(QSslSocket::VerifyNone). Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.
Information Disclosure
Shotcut
NVD
GitHub