CVE-2020-0570

Sažetak

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=1800604
https://lists.qt-project.org/pipermail/development/2020-January/038534.html
https://bugreports.qt.io/browse/QTBUG-81272

CVSS

Base:	4.4
Impact:	6.4
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

21-09-2021 - 17:58

Objavljeno

14-09-2020 - 19:15