VDB
DEBIAN-CVE-2020-24742
DEBIAN-CVE-2020-24742
PUBLISHED
CVSS 7.800000190734863 HIGH
An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files.
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | qtbase-opensource-src | 0, 0, 0 |
| Debian:12 | qtbase-opensource-src-gles | 0, 0, 0 |
| Debian:11 | qtbase-opensource-src-gles | 0, 0, 0 |
| Debian:13 | qtbase-opensource-src-gles | 0, 0, 0 |
| Debian:12 | qtbase-opensource-src | 0, 0, 0 |
| Debian:14 | qtbase-opensource-src-gles | 0, 0, 0 |
| Debian:11 | qtbase-opensource-src | 0, 0, 0 |
| Debian:13 | qtbase-opensource-src | 0, 0, 0 |
Timeline
- Aug 9, 2021 CVE Published
- Apr 28, 2026 CVE Updated