CVE-2021-3481 - OpenCVE

A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability.

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Qt	Qt

Configuration 1 [-]

OR	cpe:2.3:a:qt:qt:5.15.1:::::::*
	cpe:2.3:a:qt:qt:6.0.0:-::::::
	cpe:2.3:a:qt:qt:6.0.2:::::::*
	cpe:2.3:a:qt:qt:6.2.0:-::::::

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2021-3481	Third Party Advisory
https://bugreports.qt.io/browse/QTBUG-91507	Exploit Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1931444	Issue Tracking Third Party Advisory
https://codereview.qt-project.org/c/qt/qtsvg/+/337646	Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/08/msg00028.html

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2022-08-22T00:00:00

Updated: 2023-08-23T00:06:13.050577

Reserved: 2021-04-01T00:00:00

Link: CVE-2021-3481

JSON object: View

NVD Information

Status : Modified

Published: 2022-08-22T15:15:13.363

Modified: 2023-08-23T01:15:08.603

Link: CVE-2021-3481

JSON object: View

Redhat Information

No data.

CWE

CWE-125

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:qt:qt:5.15.1:*:*:*:*:*:*:*", "matchCriteriaId": "EA7FCB6B-872F-4900-A2CF-192AFECC4DFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:qt:qt:6.0.0:-:*:*:*:*:*:*", "matchCriteriaId": "C0A66DBD-439D-45EA-BC80-502314D5B0AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:qt:qt:6.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "AC14C9CB-1965-4659-8254-17EAB448616D", "vulnerable": true}, {"criteria": "cpe:2.3:a:qt:qt:6.2.0:-:*:*:*:*:*:*", "matchCriteriaId": "2B6E9814-F9BA-4A0C-8420-DAAB4A810567", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Qt. An out-of-bounds read vulnerability was found in QRadialFetchSimd in qt/qtbase/src/gui/painting/qdrawhelper_p.h in Qt/Qtbase. While rendering and displaying a crafted Scalable Vector Graphics (SVG) file this flaw may lead to an unauthorized memory access. The highest threat from this vulnerability is to data confidentiality and the application availability."}, {"lang": "es", "value": "Se ha encontrado un fallo en Qt. Se encontr\u00f3 una vulnerabilidad de lectura fuera de l\u00edmites en QRadialFetchSimd en el archivo qt/qtbase/src/gui/painting/qdrawhelper_p.h en Qt/Qtbase. Este fallo puede conllevar a un acceso no autorizado a la memoria al renderizar y mostrar un archivo Scalable Vector Graphics (SVG) dise\u00f1ado. La mayor amenaza de esta vulnerabilidad es la confidencialidad de los datos y la disponibilidad de la aplicaci\u00f3n."}], "id": "CVE-2021-3481", "lastModified": "2023-08-23T01:15:08.603", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-08-22T15:15:13.363", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/CVE-2021-3481"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://bugreports.qt.io/browse/QTBUG-91507"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1931444"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://codereview.qt-project.org/c/qt/qtsvg/+/337646"}, {"source": "secalert@redhat.com", "url": "https://lists.debian.org/debian-lts-announce/2023/08/msg00028.html"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-125"}], "source": "secalert@redhat.com", "type": "Secondary"}]}