Home > Vulnerability Database > CVE-2015-7946

Mend.io Vulnerability Database

CVE-2015-7946

Date: December 13, 2015

Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere. This allows an attacker to enable the MTP service by opening the emergency dialer. Fixed in 8.11+16.04.20160111.1-0ubuntu1 and 8.11+15.04.20160122-0ubuntu1.

Severity Score

4.6

Related Resources (4)

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2015-7946

Url: https://nvd.nist.gov/vuln/detail/CVE-2015-7946

Url: https://launchpad.net/bugs/1525981

Url: https://www.mend.io/vulnerability-database/CVE-2015-7946

Severity Score

4.6

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

CVSS v3.1

Base Score:	4.6
Attack Vector (AV):	PHYSICAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2015-7946

Date: December 13, 2015

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?