CVE-2020-0570

Опубликовано: 07 фев. 2020

Источник: redhat

CVSS3: 7.3

EPSS Низкий

Описание

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-73

https://bugzilla.redhat.com/show_bug.cgi?id=1800604qt: files placed by attacker can influence the working directory and lead to malicious code execution

EPSS

Процентиль: 58%

0.00359

Низкий

7.3 High

CVSS3

Связанные уязвимости

CVE-2020-0570

CVSS3: 7.3

ubuntu

больше 5 лет назад

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

CVE-2020-0570

CVSS3: 7.3

nvd

больше 5 лет назад

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

CVE-2020-0570

CVSS3: 7.3

msrc

больше 4 лет назад

Описание отсутствует

CVE-2020-0570

CVSS3: 7.3

debian

больше 5 лет назад

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5 ...

GHSA-9j84-h9rr-927m

github

больше 3 лет назад

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access.

EPSS

Процентиль: 58%

0.00359

Низкий

7.3 High

CVSS3