Linux Distros Unpatched Vulnerability : CVE-2025-4211

🗓️ 05 Aug 2025 00:00:00Reported by TenableType

Linux host has unpatched vulnerability CVE-2025-4211, impacting Qt corelib module and API misuse.

Reporter	Title	Published	Views	Family All 106
AlpineLinux	CVE-2024-38081	9 Jul 202417:03	–	alpinelinux
BDU FSTEC	The vulnerability of the Microsoft.NET Framework and.NET operating systems for Windows lies in the improper handling of symbolic links before accessing files. This allows attackers to exploit their privileges.	5 Aug 202400:00	–	bdu_fstec
IBM Security Bulletins	Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2024-38081	3 Jun 202508:20	–	ibm
Circl	CVE-2024-38081	3 May 202500:17	–	circl
Circl	CVE-2025-4211	16 May 202517:02	–	circl
CNNVD	Microsoft Visual Studio and Microsoft .NET Security Vulnerabilities	9 Jul 202400:00	–	cnnvd
CNNVD	Qt 后置链接漏洞	16 May 202500:00	–	cnnvd
CVE	CVE-2024-38081	9 Jul 202417:03	–	cve
CVE	CVE-2025-4211	16 May 202513:25	–	cve
Cvelist	CVE-2024-38081 .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability	9 Jul 202417:03	–	cvelist

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2025-4211
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(243605);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/06/04");

  script_cve_id("CVE-2025-4211");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2025-4211");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Improper Link Resolution Before File Access ('Link Following') vulnerability in QFileSystemEngine in the
    Qt corelib module on Windows which potentially allows Symlink Attacks and the use of Malicious Files.
    Issue originates from CVE-2024-38081. The vulnerability arises from the use of the GetTempPath API, which
    can be exploited by attackers to manipulate temporary file paths, potentially leading to unauthorized
    access and privilege escalation. The affected public API in the Qt Framework is QDir::tempPath() and
    anything that uses it, such as QStandardPaths with TempLocation, QTemporaryDir, and QTemporaryFile.This
    issue affects all version of Qt up to and including 5.15.18, from 6.0.0 through 6.5.8, from 6.6.0 through
    6.8.1. It is fixed in Qt 5.15.19, Qt 6.5.9, Qt 6.8.2, 6.9.0 (CVE-2025-4211)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2025-4211");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H");
  script_set_attribute(attribute:"cvss4_supplemental", value:"CVSS:4.0/S:P");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-4211");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/05/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/05");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.04");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:26.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:qt6-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:qtbase-opensource-src");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:qtbase-opensource-src-gles");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-16.04", "Host/OS/Ubuntu Linux-18.04", "Host/OS/Ubuntu Linux-20.04", "Host/OS/Ubuntu Linux-22.04", "Host/OS/Ubuntu Linux-24.04", "Host/OS/Ubuntu Linux-25.04", "Host/OS/Ubuntu Linux-25.10", "Host/OS/Ubuntu Linux-26.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-16.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "16.04",
        "pkgs": [
          {"reference": "libqt5concurrent5"},
          {"reference": "libqt5core5a"},
          {"reference": "libqt5dbus5"},
          {"reference": "libqt5gui5"},
          {"reference": "libqt5libqgtk2"},
          {"reference": "libqt5network5"},
          {"reference": "libqt5opengl5"},
          {"reference": "libqt5opengl5-dev"},
          {"reference": "libqt5printsupport5"},
          {"reference": "libqt5sql5"},
          {"reference": "libqt5sql5-mysql"},
          {"reference": "libqt5sql5-odbc"},
          {"reference": "libqt5sql5-psql"},
          {"reference": "libqt5sql5-sqlite"},
          {"reference": "libqt5sql5-tds"},
          {"reference": "libqt5test5"},
          {"reference": "libqt5widgets5"},
          {"reference": "libqt5xml5"},
          {"reference": "qt5-default"},
          {"reference": "qt5-qmake"},
          {"reference": "qt5-qmake-arm-linux-gnueabihf"},
          {"reference": "qtbase-opensource-src-gles"},
          {"reference": "qtbase5-dbg"},
          {"reference": "qtbase5-dev"},
          {"reference": "qtbase5-dev-tools"},
          {"reference": "qtbase5-dev-tools-dbg"},
          {"reference": "qtbase5-doc-html"},
          {"reference": "qtbase5-examples"},
          {"reference": "qtbase5-examples-dbg"},
          {"reference": "qtbase5-private-dev"}
        ]
      }
    ]
  },
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "libqt5concurrent5"},
          {"reference": "libqt5core5a"},
          {"reference": "libqt5dbus5"},
          {"reference": "libqt5gui5"},
          {"reference": "libqt5network5"},
          {"reference": "libqt5opengl5"},
          {"reference": "libqt5opengl5-dev"},
          {"reference": "libqt5printsupport5"},
          {"reference": "libqt5sql5"},
          {"reference": "libqt5sql5-ibase"},
          {"reference": "libqt5sql5-mysql"},
          {"reference": "libqt5sql5-odbc"},
          {"reference": "libqt5sql5-psql"},
          {"reference": "libqt5sql5-sqlite"},
          {"reference": "libqt5sql5-tds"},
          {"reference": "libqt5test5"},
          {"reference": "libqt5widgets5"},
          {"reference": "libqt5xml5"},
          {"reference": "qt5-default"},
          {"reference": "qt5-gtk-platformtheme"},
          {"reference": "qt5-qmake"},
          {"reference": "qt5-qmake-bin"},
          {"reference": "qtbase5-dev"},
          {"reference": "qtbase5-dev-tools"},
          {"reference": "qtbase5-doc"},
          {"reference": "qtbase5-doc-html"},
          {"reference": "qtbase5-examples"},
          {"reference": "qtbase5-private-dev"}
        ]
      }
    ]
  },
  "Ubuntu Linux-20.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "20.04",
        "pkgs": [
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  },
  "Ubuntu Linux-22.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "22.04",
        "pkgs": [
          {"reference": "qt6-base"},
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  },
  "Ubuntu Linux-24.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "24.04",
        "pkgs": [
          {"reference": "qt6-base"},
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  },
  "Ubuntu Linux-25.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "25.04",
        "pkgs": [
          {"reference": "qt6-base"},
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  },
  "Ubuntu Linux-25.10": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "25.10",
        "pkgs": [
          {"reference": "qt6-base"},
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  },
  "Ubuntu Linux-26.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "26.04",
        "pkgs": [
          {"reference": "qt6-base"},
          {"reference": "qtbase-opensource-src"},
          {"reference": "qtbase-opensource-src-gles"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

04 Jun 2026 00:00Current

7High risk

Vulners AI Score7

CVSS 3.17.3

CVSS 47.3

EPSS0.01292

SSVC