Unity8 converged application lifecycle allows background applications to use on-screen keyboard when not top-most
CVE-2016-1584

1.6LOW

Key Information:

What is CVE-2016-1584?

In all versions of Unity8 a running but not active application on a large-screen device could talk with Maliit and consume keyboard input.

Unity8 all

Score:

1.6

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet