A vulnerability classified as problematic has been found in Qt up to 5.15.18/6.5.8/6.8.3/6.9.0. Affected is the function qDecodeDataUrl of the component QtCore. The manipulation of the argument charset leads to denial of service.

This vulnerability is traded as CVE-2025-5455. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.