Lucene search

K

MozillaCVELIST:CVE-2015-0818

HistoryMar 24, 2015 - 12:00 a.m.

CVE-2015-0818

2015-03-2400:00:00

mozilla

www.cve.org

9.5 High

AI Score

Confidence

High

0.078 Low

EPSS

Percentile

94.2%

Mozilla Firefox before 36.0.4, Firefox ESR 31.x before 31.5.3, and SeaMonkey before 2.33.1 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation.

References

lists.opensuse.org/opensuse-security-announce/2015-03/msg00026.html

lists.opensuse.org/opensuse-security-announce/2015-03/msg00029.html

lists.opensuse.org/opensuse-security-announce/2015-03/msg00035.html

lists.opensuse.org/opensuse-updates/2015-03/msg00096.html

rhn.redhat.com/errata/RHSA-2015-0718.html

www.debian.org/security/2015/dsa-3201

www.mozilla.org/security/announce/2015/mfsa2015-28.html

www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

www.securityfocus.com/bid/73265

www.securitytracker.com/id/1031959

www.ubuntu.com/usn/USN-2538-1

bugzilla.mozilla.org/show_bug.cgi?id=1144988

security.gentoo.org/glsa/201504-01

9.5 High

AI Score

Confidence

High

0.078 Low

EPSS

Percentile

94.2%

Related for CVELIST:CVE-2015-0818

prion2 nessus23 mozilla1 ubuntucve2 openvas26 cve2 zdi1 nvd2 kaspersky1 mageia3 cvelist1 redhat1 debian2 suse6 veracode2 freebsd1 ubuntu1 centos1 oraclelinux1 osv1 archlinux1 ibm2 securityvulns1 gentoo1