Описание
A Remote Code Execution vulnerability was identified in all Windows versions of Unity Editor, e.g., before 5.3.8p2, 5.4.x before 5.4.5p5, 5.5.x before 5.5.4p3, 5.6.x before 5.6.3p1, and 2017.x before 2017.1.0p4.
Ссылки
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:unity3d:unity_editor:5.3.8:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.4.0:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.4.1:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.4.2:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.4.3:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.4.4:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.5.1:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.5.2:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.5.3:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.6.0:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.6.1:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:5.6.2:*:*:*:*:*:*:*
cpe:2.3:a:unity3d:unity_editor:2017.1.0:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02841
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
A Remote Code Execution vulnerability was identified in all Windows versions of Unity Editor, e.g., before 5.3.8p2, 5.4.x before 5.4.5p5, 5.5.x before 5.5.4p3, 5.6.x before 5.6.3p1, and 2017.x before 2017.1.0p4.
EPSS
Процентиль: 86%
0.02841
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-20