Wind River Support Network


LIN1021-5113 : Security Advisory - qtdeclarative - CVE-2022-43591

Created: Jan 19, 2023    Updated: Jan 30, 2023
Found In Version:
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace


A buffer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an out-of-bounds memory access, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability.

CREATE(Triage):(User=admin) CVE-2022-43591 (
Live chat