Vulnerabilities > Ubports

DATE CVE VULNERABILITY TITLE RISK
2022-09-09 CVE-2022-40297 Improper Privilege Management vulnerability in Ubports Ubuntu Touch 16.04
UBports Ubuntu Touch 16.04 allows the screen-unlock passcode to be used for a privileged shell via Sudo.
local
low complexity
ubports CWE-269
7.8
2020-05-07 CVE-2015-7946 Information Exposure vulnerability in Ubports Unity8
Information Exposure vulnerability in Unity8 as used on the Ubuntu phone and possibly also in Unity8 shipped elsewhere.
low complexity
ubports CWE-200
4.6
2020-05-07 CVE-2014-1423 Insufficiently Protected Credentials vulnerability in multiple products
signond before 8.57+15.04.20141127.1-0ubuntu1, as used in Ubuntu Touch, did not properly restrict applications from querying oath tokens due to incorrect checks and the missing installation of the signon-apparmor-extension.
local
low complexity
signond-project ubports CWE-522
5.5
2019-04-22 CVE-2016-1573 Use After Free vulnerability in Ubports Unity8
Versions of Unity8 before 8.11+16.04.20160122-0ubuntu1 file plugins/Dash/CardCreator.js will execute any code found in place of a fallback image supplied by a scope.
local
low complexity
ubports CWE-416
7.8