vulnerability
FreeBSD: VID-F5FA174D-19DE-11EF-83D8-4CCC6ADDA413 (CVE-2024-36048): QtNetworkAuth -- predictable seeding of PRNG in QAbstractOAuth
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | May 8, 2024 | May 25, 2024 | Feb 18, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
May 8, 2024
Added
May 25, 2024
Modified
Feb 18, 2025
Description
QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.
Solution(s)
freebsd-upgrade-package-qt5-networkauthfreebsd-upgrade-package-qt6-networkauth
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.