Wind River Support Network

HomeDefectsLIN1022-25348
Acknowledged

LIN1022-25348 : Security Advisory - qtbase - CVE-2025-14575

Created: May 20, 2026    Updated: Jun 4, 2026
Found In Version: 10.22.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube