Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Dismissed
Permalink CVE-2026-21418
7.8 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): HIGH
  • Integrity impact (I): HIGH
  • Availability impact (A): HIGH
updated 1 month, 2 weeks ago by @jopejoe1 Activity log
  • Created automatic suggestion 1 month, 3 weeks ago
  • @jopejoe1 removed
    37 packages
    • libunity
    • unityhub
    • unity-test
    • daggerfall-unity
    • kubemq-community
    • louvain-community
    • documize-community
    • rainloop-community
    • daggerfall-unity-unfree
    • jetbrains.idea-community
    • jetbrains.pycharm-community
    • v2ray-domain-list-community
    • jetbrains.idea-community-bin
    • jetbrains.idea-community-src
    • jetbrains.pycharm-community-bin
    • jetbrains.pycharm-community-src
    • cortex-command-community-project
    • perlPackages.PerlCriticCommunity
    • python312Packages.suds-community
    • python313Packages.suds-community
    • perl538Packages.PerlCriticCommunity
    • perl540Packages.PerlCriticCommunity
    • python312Packages.langchain-community
    • python313Packages.langchain-community
    • phpPackages.composer-local-repo-plugin
    • gnomeExtensions.unity-like-app-switcher
    • haskellPackages.unity-testresult-parser
    • php81Packages.composer-local-repo-plugin
    • php82Packages.composer-local-repo-plugin
    • php83Packages.composer-local-repo-plugin
    • php84Packages.composer-local-repo-plugin
    • typstPackages.muw-touying-community_0_1_0
    • typstPackages.muw-community-templates_0_1_0
    • typstPackages.muw-community-templates_0_1_1
    • typstPackages.hhn-unitylab-thesis-template_0_0_1
    • typstPackages.hhn-unitylab-thesis-template_0_0_2
    • vscode-extensions.visualstudiotoolsforunity.vstuc
    1 month, 2 weeks ago
  • @jopejoe1 dismissed 1 month, 2 weeks ago
Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization …

Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.

References

Affected products

Unity
  • <5.5.3 
Not present in nixpkgs