10
CVE-2015-2737
- EPSS 0.95%
- Veröffentlicht 06.07.2015 02:01:06
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle security@mozilla.org
- Teams Watchlist Login
- Unerledigt Login
The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecified impact and attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mozilla ≫ Firefox ESR Version31.1
Mozilla ≫ Firefox ESR Version31.2
Mozilla ≫ Firefox ESR Version31.3
Mozilla ≫ Firefox ESR Version31.4
Mozilla ≫ Firefox ESR Version31.5
Mozilla ≫ Firefox ESR Version31.6.0
Mozilla ≫ Firefox ESR Version31.7.0
Canonical ≫ Ubuntu Linux Version12.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version14.04 SwEditionlts
Canonical ≫ Ubuntu Linux Version14.10
Canonical ≫ Ubuntu Linux Version15.04
Suse ≫ Linux Enterprise Desktop Version12
Suse ≫ Linux Enterprise Server Version11 Updatesp4
Suse ≫ Linux Enterprise Software Development Kit Version12
Suse ≫ Suse Linux Enterprise Server Version12
Debian ≫ Debian Linux Version7.0
Debian ≫ Debian Linux Version8.0
Mozilla ≫ Thunderbird Version <= 38.0.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.95% | 0.753 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|