Home

CVE-2015-7204

Description

Mozilla Firefox before 43.0 does not properly store the properties of unboxed objects, which allows remote attackers to execute arbitrary code via crafted JavaScript variable assignments.

Risk Information

Base Score
8.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.72

Associated Vulnerability

VulnerabilityOS Platform
Update for Mozilla Firefox (43.0)Windows
Update for Mozilla Firefox (43.0.1)Windows
Update for Mozilla Firefox (43.0.2)Windows
Update for Mozilla Firefox (43.0.3)Windows
Update for Mozilla Firefox x64 (43.0.3)Windows
Update for Mozilla Firefox (43.0.4)Windows
Update for Mozilla Firefox x64 (43.0.4)Windows
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (43.0)Mac
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (43.0.1)Mac
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (43.0.2)Mac
Multiple vulnerabilities are fixed in Update for Mozilla Firefox For Mac (43.0.4)Mac
Multiple Vulnerabilities are affected in Mozilla Firefox for Mac 41.0.2Mac
Vulnerabilities CVE-2015-7184,CVE-2015-7204 are affected in Mozilla Firefox for Mac 41.0.1Mac
Multiple Vulnerabilities are affected in Mozilla Firefox for Mac 42.0Mac
Vulnerabilities CVE-2015-7204 are affected in Mozilla Firefox for Mac 41.0Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-302188Update for Mozilla Firefox (43.0)
PATCH-302189Update for Mozilla Firefox (43.0.1)
PATCH-302190Update for Mozilla Firefox (43.0.2)
PATCH-302191Update for Mozilla Firefox (43.0.3)
PATCH-302192Update for Mozilla Firefox x64 (43.0.3)
PATCH-302193Update for Mozilla Firefox (43.0.4)
PATCH-302194Update for Mozilla Firefox x64 (43.0.4)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-607000Mozilla Firefox For Mac (124.0)
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-611870Mozilla Firefox For Mac (142.0.1)
PATCH-611870Mozilla Firefox For Mac (142.0.1)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234