Vulnerability CVE-2020-0570: Information

Description

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

Severity: HIGH (7.3) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Fixed packages

References to Advisories, Solutions, and Tools

1. Affected configurations:

   1. Configuration 1

      cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

      Start including

      5.10.0

      End excliding

      5.12.7

      ---

      cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

      Start including

      5.13.0

      End excliding

      5.14.0

      ---

      cpe:2.3:a:qt:qt:*:*:*:*:*:*:*:*

      End excliding

      5.9.10

      ---

      Configuration 2

      cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

      ---