VYPR
Unrated severityNVD Advisory· Published Apr 22, 2019· Updated Sep 16, 2024

Using a specially crafted fallback art property, scopes can execute arbitrary QML code in context of unity8-dash

CVE-2016-1573

Description

Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope.

Affected products

2
  • Unity8/Unity8llm-fuzzy
    Range: < 8.11+16.04.20160122-0ubuntu1
  • Ubuntu/Unity8v5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.