发布时间: 2025年2月2日
修改时间: 2025年2月21日
QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.6, and 6.6.x through 6.7.x before 6.7.1 uses only the time to seed the PRNG, which may result in guessable values.
| NVD | openEuler | |
|---|---|---|
| CVSS评分 | 9.8 | 9.8 |
| Attack Vector | Network | Network |
| Attack Complexity | Low | Low |
| Privileges Required | None | None |
| User Interaction | None | None |
| Scope | Unchanged | Unchanged |
| Confidentiality | High | High |
| Integrity | High | High |
| Availability | High | High |
| 公告名 | 概要 | 发布时间 |
|---|---|---|
| KylinSec-SA-2025-1261 | qt5-qtnetworkauth security update | 2025年2月21日 |
| 产品 | 包 | 状态 |
|---|---|---|
| KY3.4-5A | qt5-qtnetworkauth | Unaffected |
| KY3.5.2 | qt5-qtnetworkauth | Unaffected |
| V6 | qt5-qtnetworkauth | Fixed |
