← volver
CVE-2016-1573

Using a specially crafted fallback art property, scopes can execute arbitrary QML code in context of unity8-dash

CVSS 4.8 MEDIUMEPSS 0.4%
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope.
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Productos afectados
Ubuntu · Unity8

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://bazaar.launchpad.net/~unity-team/unity8/stable/revision/2138