7.5

CVE-2015-7212

Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation.

Data is provided by the National Vulnerability Database (NVD)
FedoraprojectFedora Version22
FedoraprojectFedora Version23
OpensuseLeap Version42.1
OpensuseOpensuse Version13.1
OpensuseOpensuse Version13.2
MozillaFirefox Version <= 42.0
MozillaFirefox Version38.0
MozillaFirefox Version38.0.1
MozillaFirefox Version38.0.5
MozillaFirefox Version38.1.0
MozillaFirefox Version38.1.1
MozillaFirefox Version38.2.0
MozillaFirefox Version38.2.1
MozillaFirefox Version38.3.0
MozillaFirefox Version38.4.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 2.31% 0.841
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P