Vulnerability Details CVE-2015-9288
The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.8%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2015-9288
-
cpe:2.3:a:unity:web_player:-
-
cpe:2.3:a:unity:web_player:4.3.3
-
cpe:2.3:a:unity:web_player:4.3.4
-
cpe:2.3:a:unity:web_player:4.5
-
cpe:2.3:a:unity:web_player:4.5.1
-
cpe:2.3:a:unity:web_player:4.5.2
-
cpe:2.3:a:unity:web_player:4.5.3
-
cpe:2.3:a:unity:web_player:4.5.4
-
cpe:2.3:a:unity:web_player:4.5.5
-
cpe:2.3:a:unity:web_player:4.6
-
cpe:2.3:a:unity:web_player:4.6.1
-
cpe:2.3:a:unity:web_player:4.6.2
-
cpe:2.3:a:unity:web_player:4.6.3
-
cpe:2.3:a:unity:web_player:4.6.4
-
cpe:2.3:a:unity:web_player:4.6.5
-
cpe:2.3:a:unity:web_player:4.6.6
-
cpe:2.3:a:unity:web_player:5.0
-
cpe:2.3:a:unity:web_player:5.0.1
-
cpe:2.3:a:unity:web_player:5.0.2
-
cpe:2.3:a:unity:web_player:5.0.3