Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.7
CVSSv3

CVE-2020-0569

Published: 23/11/2020 Updated: 12/09/2023
CVSS v2 Base Score: 2.7 | Impact Score: 2.9 | Exploitability Score: 5.1
CVSS v3 Base Score: 5.7 | Impact Score: 3.6 | Exploitability Score: 2.1
VMScore: 240
Vector: AV:A/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Intel

Vulnerability Summary

It exists that Qt incorrectly handled certain PPM images. If a user or automated system were tricked into opening a specially crafted PPM file, a remote attacker could cause Qt to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2018-19872)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

intel ax201_firmware

intel ax200_firmware

intel ac_9560_firmware

intel ac_9462_firmware

intel ac_9461_firmware

intel ac_9260_firmware

intel ac_8265_firmware

intel ac_8260_firmware

intel ac_3168_firmware

intel 7265_firmware

intel ac_3165_firmware

debian debian linux 8.0

debian debian linux 9.0

debian debian linux 10.0

canonical ubuntu linux 18.04

canonical ubuntu linux 19.10

canonical ubuntu linux 16.04

opensuse leap 15.1

qt qt

Vendor Advisories

Ubuntu Security Notice: qtbase-opensource-src vulnerabilities
Several security issues were fixed in Qt ...
Red Hat: Moderate: qt5-qtbase security update
Synopsis Moderate: qt5-qtbase security update Type/Severity Security Advisory: Moderate Topic An update for qt5-qtbase is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base sco ...
Red Hat: Moderate: qt5-qtbase and qt5-qtwebsockets security and bug fix update
Synopsis Moderate: qt5-qtbase and qt5-qtwebsockets security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for qt5-qtbase, qt5-qttools, and qt5-qtwebsockets is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impac ...
Debian Security Advisories: DSA-4617-1 qtbase-opensource-src -- security update
Two security issues were found in the Qt library, which could result in plugins and libraries being loaded from the current working directory, resulting in potential code execution For the oldstable distribution (stretch), these problems have been fixed in version 571+dfsg-3+deb9u2 For the stable distribution (buster), these problems have been ...
Amazon Linux 2: ALAS2-2020-1543
Files placed by attacker can influence the working directory and lead to malicious code execution (CVE-2020-0569) Uncontrolled search path in the QT Library before 5140, 5127 and 5910 may allow an authenticated user to potentially enable elevation of privilege via local access (CVE-2020-0570) ...

References

CWE-787https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00338.htmlhttps://usn.ubuntu.com/4275-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook