6.8
CVE-2012-3979
- EPSS 1.88%
- Veröffentlicht 29.08.2012 10:56:41
- Zuletzt bearbeitet 16.06.2026 23:44:11
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the __android_log_print function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mozilla ≫ Firefox Mobile Version6.0.1
Mozilla ≫ Firefox Mobile Version6.0.2
Mozilla ≫ Firefox Mobile Version10.0
Mozilla ≫ Firefox Mobile Version10.0.1
Mozilla ≫ Firefox Mobile Version10.0.2
Mozilla ≫ Firefox Mobile Version10.0.3
Mozilla ≫ Firefox Mobile Version10.0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.88% | 0.768 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00014.html
http://www.mozilla.org/security/announce/2012/mfsa2012-71.html
http://www.securityfocus.com/bid/55344
https://bugzilla.mozilla.org/show_bug.cgi?id=769265