Unrated severityNVD Advisory· Published Sep 14, 2020· Updated Aug 4, 2024

CVE-2020-0570

Description

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

Affected products

QT Library/QT Librarydescription
osv-coords3 versions
pkg:rpm/almalinux/qt5-qtbase-static pkg:rpm/almalinux/qt5-qttools-static pkg:rpm/opensuse/libqt5-qtbase&distro=openSUSE%20Tumbleweed
< 5.12.5-6.el8+ 2 more
- (no CPE)range: < 5.12.5-6.el8
- (no CPE)range: < 5.12.5-2.el8
- (no CPE)range: < 5.15.2+kde222-1.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugreports.qt.io/browse/QTBUG-81272mitrex_refsource_CONFIRM
bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
lists.qt-project.org/pipermail/development/2020-January/038534.htmlmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000