CVE-2020-0570
Description
Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.
Risk Information
Base Score
7.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.329
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.9.5+dfsg-0ubuntu2.5_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.9.5+dfsg-0ubuntu2.5_amd64.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.12.4+dfsg-4ubuntu1.1_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.12.4+dfsg-4ubuntu1.1_amd64.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.5.1+dfsg-16ubuntu7.7_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5gui5_5.5.1+dfsg-16ubuntu7.7_amd64.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.9.5+dfsg-0ubuntu2.5_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.9.5+dfsg-0ubuntu2.5_amd64.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.12.4+dfsg-4ubuntu1.1_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.12.4+dfsg-4ubuntu1.1_amd64.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.5.1+dfsg-16ubuntu7.7_i386.deb | Linux |
| Qt 5 libraries (USN-4275-1) libqt5core5a_5.5.1+dfsg-16ubuntu7.7_amd64.deb | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-common-5.9.7-4.el7.noarch.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-devel-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-devel-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-doc-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-examples-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-gui-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-gui-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-mysql-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-mysql-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-odbc-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-odbc-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-postgresql-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-postgresql-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-static-5.9.7-4.el7.i686.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-qtbase-static-5.9.7-4.el7.x86_64.rpm | Linux |
| (RHSA-2020:4025) qt5-qtbase security update qt5-rpm-macros-5.9.7-4.el7.noarch.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-assistant-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-designer-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-doctools-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-linguist-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qdbusviewer-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-common-5.12.5-6.el8.noarch.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-debugsource-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-debugsource-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-devel-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-devel-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-examples-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-examples-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-gui-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-gui-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-mysql-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-mysql-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-odbc-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-odbc-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-postgresql-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-postgresql-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-private-devel-5.12.5-6.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtbase-private-devel-5.12.5-6.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-common-5.12.5-2.el8.noarch.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-debugsource-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-debugsource-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-devel-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-devel-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-examples-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-examples-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designer-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designer-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designercomponents-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-designercomponents-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-help-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qttools-libs-help-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-debugsource-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-debugsource-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-devel-5.12.5-2.el8.i686.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-devel-5.12.5-2.el8.x86_64.rpm | Linux |
| (RHSA-2020:4690) qt5-qtbase and qt5-qtwebsockets security and bug fix update qt5-qtwebsockets-examples-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-assistant update (ELSA-2020-4690) qt5-assistant-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-designer update (ELSA-2020-4690) qt5-designer-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-doctools update (ELSA-2020-4690) qt5-doctools-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-linguist update (ELSA-2020-4690) qt5-linguist-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qdbusviewer update (ELSA-2020-4690) qt5-qdbusviewer-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qtbase update (ELSA-2020-4690) qt5-qtbase-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase update (ELSA-2020-4690) qt5-qtbase-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-common update (ELSA-2020-4690) qt5-qtbase-common-5.12.5-6.el8.noarch.rpm | Linux |
| Qt5-qtbase-devel update (ELSA-2020-4690) qt5-qtbase-devel-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-devel update (ELSA-2020-4690) qt5-qtbase-devel-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-examples update (ELSA-2020-4690) qt5-qtbase-examples-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-examples update (ELSA-2020-4690) qt5-qtbase-examples-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-gui update (ELSA-2020-4690) qt5-qtbase-gui-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-gui update (ELSA-2020-4690) qt5-qtbase-gui-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-mysql update (ELSA-2020-4690) qt5-qtbase-mysql-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-mysql update (ELSA-2020-4690) qt5-qtbase-mysql-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-odbc update (ELSA-2020-4690) qt5-qtbase-odbc-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-odbc update (ELSA-2020-4690) qt5-qtbase-odbc-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-postgresql update (ELSA-2020-4690) qt5-qtbase-postgresql-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-postgresql update (ELSA-2020-4690) qt5-qtbase-postgresql-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qtbase-private-devel update (ELSA-2020-4690) qt5-qtbase-private-devel-5.12.5-6.el8.i686.rpm | Linux |
| Qt5-qtbase-private-devel update (ELSA-2020-4690) qt5-qtbase-private-devel-5.12.5-6.el8.x86_64.rpm | Linux |
| Qt5-qttools update (ELSA-2020-4690) qt5-qttools-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qttools-common update (ELSA-2020-4690) qt5-qttools-common-5.12.5-2.el8.noarch.rpm | Linux |
| Qt5-qttools-devel update (ELSA-2020-4690) qt5-qttools-devel-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qttools-devel update (ELSA-2020-4690) qt5-qttools-devel-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qttools-examples update (ELSA-2020-4690) qt5-qttools-examples-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qttools-examples update (ELSA-2020-4690) qt5-qttools-examples-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qttools-libs-designer update (ELSA-2020-4690) qt5-qttools-libs-designer-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qttools-libs-designer update (ELSA-2020-4690) qt5-qttools-libs-designer-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qttools-libs-designercomponents update (ELSA-2020-4690) qt5-qttools-libs-designercomponents-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qttools-libs-designercomponents update (ELSA-2020-4690) qt5-qttools-libs-designercomponents-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qttools-libs-help update (ELSA-2020-4690) qt5-qttools-libs-help-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qttools-libs-help update (ELSA-2020-4690) qt5-qttools-libs-help-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qtwebsockets update (ELSA-2020-4690) qt5-qtwebsockets-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qtwebsockets update (ELSA-2020-4690) qt5-qtwebsockets-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qtwebsockets-devel update (ELSA-2020-4690) qt5-qtwebsockets-devel-5.12.5-2.el8.i686.rpm | Linux |
| Qt5-qtwebsockets-devel update (ELSA-2020-4690) qt5-qtwebsockets-devel-5.12.5-2.el8.x86_64.rpm | Linux |
| Qt5-qtwebsockets-examples update (ELSA-2020-4690) qt5-qtwebsockets-examples-5.12.5-2.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234