Uncontrolled Search Path Element in Qt Network OpenSSL TLS backend...

1.8 / 10

LOW

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Description

An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.

Basic Information

ID CVE-2025-14575

Source TQtC

Published May 19, 2026 at 13:01

Modified May 19, 2026 at 14:11

Affected Product

Vendor The Qt Company

Product Qt

Version 5.0.0

Affected Versions The Qt Company Qt 5.0.0
The Qt Company Qt 6.0.0
The Qt Company Qt 6.6.0
The Qt Company Qt 6.9.0

CWE Classification

CWE-427

References

codereview.qt-project.org /c/qt/qtbase/+/642967

{
    "lastseen": "",
    "description": "An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate file placed in the application's working directory.",
    "published": "2026-05-19T13:01:33.560Z",
    "modified": "2026-05-19T14:11:40.774Z",
    "type": "cve",
    "title": "Uncontrolled Search Path Element in Qt Network OpenSSL TLS backend allows rogue CA certificate loading",
    "source": "TQtC",
    "references": "https://codereview.qt-project.org/c/qt/qtbase/+/642967",
    "id": "CVE-2025-14575",
    "bulletinFamily": "",
    "cwe": [
        "CWE-427"
    ],
    "cvelist": null,
    "sourceData": "The Qt Company Qt 5.0.0\nThe Qt Company Qt 6.0.0\nThe Qt Company Qt 6.6.0\nThe Qt Company Qt 6.9.0",
    "sourceHref": "",
    "cvss": {
        "score": 1.8,
        "severity": "LOW",
        "vector": "CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Qt",
    "version": "5.0.0",
    "vendor": "The Qt Company",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Uncontrolled Search Path Element in Qt Network OpenSSL TLS backend allows rogue CA certificate loading_CVE-2025-14575