Security Flaw in Qt Network Authorization Affecting Multiple Versions
CVE-2024-36048
Currently unrated
What is CVE-2024-36048?
A vulnerability in the QAbstractOAuth component of Qt Network Authorization allows for insecure random number generation. The flaw arises from the practice of using solely time to seed the pseudo-random number generator (PRNG), making it susceptible to predictability and guessable values. This can potentially lead to security issues such as unauthorized access or manipulation of sensitive data. Affected users should prioritize applying patches or updates that rectify this vulnerability across all impacted Qt versions.