PT-2022-6843 · Qt Company+1 · Qt+1

Published

2022-03-02

·

Updated

2024-02-22

·

CVE-2022-25634

CVSS v2.0

7.8

High

AV:N/AC:L/Au:N/C:C/I:N/A:N
Name of the Vulnerable Software and Affected Versions Qt versions 5.15.8 and earlier Qt versions 6.x through 6.2.3
Description The issue is related to the LoadLibrary function in the Qt cross-platform framework, which can be exploited to bypass directory restrictions. This could allow a remote attacker to access protected information. The problem arises because Qt can load system library files from an unintended working directory.
Recommendations For Qt versions 5.15.8 and earlier, update to a version later than 5.15.8 to resolve the issue. For Qt versions 6.x through 6.2.3, update to a version later than 6.2.3 to resolve the issue. As a temporary workaround, consider restricting the loading of system library files to intended directories until a patch is available.

Fix

Path traversal

Weakness Enumeration

CWE-22

Related Identifiers

ALT-PU-2022-1729
ALT-PU-2022-1749
ALT-PU-2022-1961
ALT-PU-2022-1962
ALT-PU-2022-1963
ALT-PU-2022-1964
ALT-PU-2022-1965
ALT-PU-2022-1966
ALT-PU-2022-1967
ALT-PU-2023-1700
ALT-PU-2023-1701
ALT-PU-2023-1702
ALT-PU-2023-1703
ALT-PU-2023-1704
ALT-PU-2023-1705
ALT-PU-2023-1706
ALT-PU-2023-1707
ALT-PU-2023-1708
ALT-PU-2023-1709
ALT-PU-2023-1710
ALT-PU-2023-1711
ALT-PU-2023-1712
ALT-PU-2023-1713
ALT-PU-2023-1714
ALT-PU-2023-1715
ALT-PU-2023-1716
ALT-PU-2023-1717
ALT-PU-2023-1718
ALT-PU-2023-1719
ALT-PU-2023-1720
ALT-PU-2023-1721
ALT-PU-2023-1722
ALT-PU-2023-1723
ALT-PU-2023-1724
ALT-PU-2023-1725
ALT-PU-2023-1726
ALT-PU-2023-1727
ALT-PU-2023-1728
ALT-PU-2023-1729
ALT-PU-2023-1730
ALT-PU-2023-1731
ALT-PU-2023-1732
ALT-PU-2023-1733
ALT-PU-2023-4298
ALT-PU-2023-4299
ALT-PU-2023-4300
ALT-PU-2023-4301
ALT-PU-2023-4302
ALT-PU-2023-4303
ALT-PU-2023-4304
ALT-PU-2023-4305
ALT-PU-2023-4306
ALT-PU-2023-4307
ALT-PU-2023-4308
ALT-PU-2023-4309
ALT-PU-2023-4310
ALT-PU-2023-4311
ALT-PU-2023-4312
ALT-PU-2023-4313
ALT-PU-2023-4314
ALT-PU-2023-4315
ALT-PU-2023-4316
ALT-PU-2023-4317
ALT-PU-2023-4318
ALT-PU-2023-4319
ALT-PU-2023-4320
ALT-PU-2023-4321
ALT-PU-2023-4322
ALT-PU-2023-4323
ALT-PU-2023-4324
ALT-PU-2023-4325
ALT-PU-2023-4326
ALT-PU-2023-4327
ALT-PU-2023-4328
ALT-PU-2023-4329
ALT-PU-2023-4330
ALT-PU-2023-4331
ALT-PU-2024-1120
ALT-PU-2024-2801
BDU:2023-05109
CVE-2022-25634

Affected Products

Alt Linux
Qt