Login Sign Up

CVE-2022-25634

7.5 HIGH
Path Traversal

📋 TL;DR

This vulnerability in Qt allows attackers to load malicious system library files from unintended directories, potentially leading to arbitrary code execution. It affects applications using Qt 5 through 5.15.8 and Qt 6.x through 6.2.3 on all platforms where Qt is deployed.

💻 Affected Systems

Products:
  • Qt framework
  • Applications using Qt libraries
Versions: Qt 5 through 5.15.8, Qt 6.x through 6.2.3
Operating Systems: All platforms supported by Qt (Windows, Linux, macOS, etc.)
Default Config Vulnerable: ⚠️ Yes
Notes: All Qt applications using affected versions are vulnerable regardless of configuration.

📦 What is this software?

Qt by Qt

View all CVEs affecting Qt →

Qt by Qt

View all CVEs affecting Qt →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the Qt application, potentially leading to full system compromise.

🟠

Likely Case

Local privilege escalation or arbitrary code execution when combined with other attack vectors.

🟢

If Mitigated

Limited impact if proper file permissions and application sandboxing are implemented.

🌐 Internet-Facing: MEDIUM - Requires specific conditions for remote exploitation but possible in web applications using Qt.
🏢 Internal Only: HIGH - Local attackers can exploit this for privilege escalation in multi-user environments.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires ability to place malicious library files in specific directories accessible to the Qt application.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Qt 5.15.9+, Qt 6.2.4+

Vendor Advisory: https://codereview.qt-project.org/c/qt/qtbase/+/396440

Restart Required: Yes

Instructions:

1. Update Qt to version 5.15.9 or higher for Qt 5, or 6.2.4 or higher for Qt 6. 2. Recompile and redeploy all applications using Qt. 3. Apply patches from official Qt repositories if updating is not possible.

🔧 Temporary Workarounds

Restrict library search paths

all

Use OS-level controls to restrict where Qt applications can load libraries from

On Linux: Use SELinux/AppArmor policies
On Windows: Configure application control policies

Run with minimal privileges

all

Run Qt applications with least privilege to limit impact of exploitation

sudo -u lowprivuser ./qt_application
runas /user:lowprivuser qt_application.exe

🧯 If You Can't Patch

  • Implement strict file system permissions to prevent unauthorized library placement
  • Use application sandboxing or containerization to isolate Qt applications

🔍 How to Verify

Check if Vulnerable:

Check Qt version using qmake --version or examine Qt library files for version information

Check Version:

qmake --version

Verify Fix Applied:

Verify Qt version is 5.15.9+ or 6.2.4+ and check that patches from official repositories are applied

📡 Detection & Monitoring

Log Indicators:

  • Unexpected library loading from non-standard paths
  • Process execution anomalies in Qt applications

Network Indicators:

  • None - this is a local file system vulnerability

SIEM Query:

Process creation where parent process is Qt application AND loaded libraries include suspicious paths

📊 Metadata

CVE ID: CVE-2022-25634
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-22
Published: March 2, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-25634, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)