Wind River Support Network

HomeDefectsLIN1023-23824
Acknowledged

LIN1023-23824 : Security Advisory - qtbase - CVE-2025-14575

Created: May 20, 2026    Updated: Jun 4, 2026
Found In Version: 10.23.30.2
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube