All vulnerabilities
CVE-2015-4495
Mozilla Firefox Security Feature Bypass Vulnerability
Mozilla — Firefox
- Added to KEV catalog
- 25 May 2022
- Federal remediation due date
- 15 June 2022
- Weakness classification (CWE)
- CWE-200
CISA Description
Moxilla Firefox allows remote attackers to bypass the Same Origin Policy to read arbitrary files or gain privileges.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2015-4495
More Mozilla Vulnerabilities
CVE-2010-3765
Mozilla Multiple Products Remote Code Execution Vulnerability
CVE-2024-9680
Mozilla Firefox Use-After-Free Vulnerability
CVE-2016-9079
Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability
CVE-2019-11708
Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability
CVE-2019-11707
Mozilla Firefox and Thunderbird Type Confusion Vulnerability
Confirm Your Exposure
Is this vulnerability present in your environment?
CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.
Explore VAPT Services