admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2015/CVE-2015-08xx/CVE-2015-0801.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

214 lines
7.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2015-0801",
"sourceIdentifier": "security@mozilla.org",
"published": "2015-04-01T10:59:02.643",
"lastModified": "2017-01-03T02:59:43.177",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving anchor navigation, a similar issue to CVE-2015-0818."
},
{
"lang": "es",
"value": "Mozilla Firefox anterior a 37.0, Firefox ESR 31.x anterior a 31.6, y Thunderbird anterior a 31.6 permiten a atacantes remotos evadir Same Origin Policy y ejecutar c\u00f3digo JavaScript arbitrario con privilegios chrome a trav\u00e9s de vectores que involucran la navegaci\u00f3n de anclajes (anchor), un problema similar a CVE-2015-0818."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"versionEndIncluding": "36.0.4",
"matchCriteriaId": "4E600CCE-7BA3-410C-B089-9C7C27EE7D82"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*",
"versionEndIncluding": "31.5.3",
"matchCriteriaId": "FDEF9754-B549-4AAC-926B-404143EA27FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.0:*:*:*:*:*:*:*",
"matchCriteriaId": "992DDB6B-F32C-4E80-B386-EB1643D079E4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6D7AAC77-57A3-4747-B760-0EE3CD53E4DE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "19837144-FBCC-4B36-BAF4-FCD9F9C2AAE5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D0DB1BAA-3729-48BD-A8D0-5BBF3D4ABDE6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7DCA6959-24B7-4F86-BE25-0A8A7C1A3D13"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.3:*:*:*:*:*:*:*",
"matchCriteriaId": "697EA344-F982-4E9F-9EC8-CCCB5829582B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5C699284-7876-4C8D-B259-B97C60C9A349"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.4:*:*:*:*:*:*:*",
"matchCriteriaId": "61304847-1DC8-442C-8194-28E52B3C1293"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.5:*:*:*:*:*:*:*",
"matchCriteriaId": "8DF9724E-93B2-4BC7-8181-6D9521A6CC37"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4C9244A7-665A-48DE-89C9-C76E7A4556F5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox_esr:31.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2E6787E1-0523-49B7-B9B3-74F2D43DB714"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*",
"versionEndIncluding": "31.5",
"matchCriteriaId": "FC3823E9-1BAA-4402-95E2-7AF5B793DEBE"
}
]
}
]
}
],
"references": [
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html",
"source": "security@mozilla.org"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html",
"source": "security@mozilla.org"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html",
"source": "security@mozilla.org"
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html",
"source": "security@mozilla.org"
},
{
"url": "http://rhn.redhat.com/errata/RHSA-2015-0766.html",
"source": "security@mozilla.org"
},
{
"url": "http://rhn.redhat.com/errata/RHSA-2015-0771.html",
"source": "security@mozilla.org"
},
{
"url": "http://www.debian.org/security/2015/dsa-3211",
"source": "security@mozilla.org"
},
{
"url": "http://www.debian.org/security/2015/dsa-3212",
"source": "security@mozilla.org"
},
{
"url": "http://www.mozilla.org/security/announce/2015/mfsa2015-40.html",
"source": "security@mozilla.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html",
"source": "security@mozilla.org"
},
{
"url": "http://www.securityfocus.com/bid/73455",
"source": "security@mozilla.org"
},
{
"url": "http://www.securitytracker.com/id/1031996",
"source": "security@mozilla.org"
},
{
"url": "http://www.securitytracker.com/id/1032000",
"source": "security@mozilla.org"
},
{
"url": "http://www.ubuntu.com/usn/USN-2550-1",
"source": "security@mozilla.org"
},
{
"url": "http://www.ubuntu.com/usn/USN-2552-1",
"source": "security@mozilla.org"
},
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1146339",
"source": "security@mozilla.org"
},
{
"url": "https://security.gentoo.org/glsa/201512-10",
"source": "security@mozilla.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink