vulnerability
Amazon Linux AMI 2: CVE-2020-24742: Security patch for qt5-qtbase (ALAS-2020-1543)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | 08/09/2021 | 08/08/2023 | 08/08/2023 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
08/09/2021
Added
08/08/2023
Modified
08/08/2023
Description
An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files.
Solution(s)
amazon-linux-ami-2-upgrade-qt5-qtbaseamazon-linux-ami-2-upgrade-qt5-qtbase-commonamazon-linux-ami-2-upgrade-qt5-qtbase-debuginfoamazon-linux-ami-2-upgrade-qt5-qtbase-develamazon-linux-ami-2-upgrade-qt5-qtbase-docamazon-linux-ami-2-upgrade-qt5-qtbase-examplesamazon-linux-ami-2-upgrade-qt5-qtbase-guiamazon-linux-ami-2-upgrade-qt5-qtbase-mysqlamazon-linux-ami-2-upgrade-qt5-qtbase-odbcamazon-linux-ami-2-upgrade-qt5-qtbase-postgresqlamazon-linux-ami-2-upgrade-qt5-qtbase-staticamazon-linux-ami-2-upgrade-qt5-rpm-macros
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.