Vulnerability in The Qt Company
CVE-2025-14575
An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS backend of Qt Network (qtbase) in Qt Qt Framework (Unix) allows a local attacker to load a rogue CA certificate as a trusted system authority via a crafted certificate fi…
EPSS: 0.000 (1.2th percentile) — read the EPSS interpretation.
Affected products
- The Qt Company — versions 5.0.0, 6.0.0, 6.6.0