Lucene search
CanonicalCVELIST:CVE-2016-1573HistoryMar 31, 2016 - 12:00 a.m.
CVE-2016-1573 Using a specially crafted fallback art property, scopes can execute arbitrary QML code in context of unity8-dash
2016-03-3100:00:00
canonical
www.cve.org
4.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
12.8%
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope.
CNA Affected
[
{
"product": "Unity8",
"vendor": "Ubuntu",
"versions": [
{
"lessThan": "8.11+16.04.20160122-0ubuntu1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2016-1573
2019-04-22 16:29:01
cve
cve
CVE-2016-1573
2019-04-22 16:29:01
ubuntucve
ubuntucve
CVE-2016-1573
2016-03-31 00:00:00
prion
prion
Code injection
2019-04-22 16:29:00
nvd
nvd
CVE-2016-1573
2019-04-22 16:29:01
4.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
12.8%
Related for CVELIST:CVE-2016-1573