CVE-2017-12939

CVE-2017-12939 describes a Remote Code Execution vulnerability in all Windows versions of Unity Editor (pre-5.3.8p2, pre-5.4.5p5, pre-5.5.4p3, pre-5.6.3p1, pre-2017.1.0p4). The provided documents identify the affected Unity Editor Windows builds but do not specify technical details on root cause,...

CVE-2019-9197

Unity Editor 2018.3 is affected by CVE-2019-9197 via the com.unity3d.kharma protocol handler. A crafted com.unity3d.kharma URI can trigger remote code execution, with the attacker able to run code in the context of the current user. Exploitation requires user interaction (the target must visit a ...