CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
93.5%
Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possibly execute arbitrary code via a crafted request.
Vendor | Product | Version | CPE |
---|---|---|---|
ps_project_management_team | unity-firefox-extension | * | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:*:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 0.02 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:0.02:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 0.2.1 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:0.2.1:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 0.3 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:0.3:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 0.3.1 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:0.3.1:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 2.1 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:2.1:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 2.2 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:2.2:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 2.3 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:2.3:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 2.3.1 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:2.3.1:-:*:*:*:firefox:*:* |
ps_project_management_team | unity-firefox-extension | 2.3.2 | cpe:2.3:a:ps_project_management_team:unity-firefox-extension:2.3.2:-:*:*:*:firefox:*:* |