Wind River Support Network

HomeDefectsLIN1024-21390
Acknowledged

LIN1024-21390 : Security Advisory - qtbase - CVE-2025-14575

Created: May 20, 2026    Updated: Jun 4, 2026
Found In Version: 10.24.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Userspace

Description

An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube