A security advisory has been issued for CVE-2025-14575, an Untrusted Search Path vulnerability in Qt's OpenSSL backend certificate loading mechanism. Affecting Qt 5.0.0 through Qt 6.9.1 on Unix/Linux (excluding macOS), the flaw can cause malicious certificates to be loaded as trusted system certificates under specific conditions: broken symlinks in the CA certificates folder or a race condition during certificate store updates, combined with the app running from an attacker-controlled directory. Successful exploitation could enable man-in-the-middle attacks. The CVSS 4.0 score is 1.8 (Low). Mitigations include ensuring proper on-demand certificate loading, avoiding broken symlinks in CA directories, and not running Qt apps from untrusted directories. The fix is available in Qt 6.5.10, 6.8.4, and 6.9.2, with patches provided for each branch.
Sort: