CVE 2017-18021
It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only applies to the QtPass GUI.
See the 
CVE page on Mitre.org
for more details.
