CVE-2016-1584

low-risk
Published 2019-04-22

In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input.

Do I need to act?

-
0.24% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
1
CVSS 1.6/10 Low
PHYSICAL / HIGH complexity

Affected Products (1)

Unity8

Affected Vendors

Unity8

References (2)

Release Notes https://bazaar.launchpad.net/~mir-team/qtmir/trunk/revision/521
Release Notes https://bazaar.launchpad.net/~mir-team/qtmir/trunk/revision/521
10
/ 100
low-risk
Severity 4/34 · Minimal
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal