CVE-2012-3979

3 documents3 sources
Severity
6.8MEDIUM
EPSS
1.5%
top 19.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mozilla FirefoxMozilla Firefox Mobile
Timeline
PublishedAug 29
Latest updateMay 17

Description

Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the __android_log_print function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

NVDmozilla/firefox14.0+150
NVDmozilla/firefox_mobile7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-85fc-m2vq-4r26: Mozilla Firefox before 152022-05-17
CVEList
CVE-2012-3979: Mozilla Firefox before 152012-08-29
CVE-2012-3979 (MEDIUM CVSS 6.8) | Mozilla Firefox before 15.0 on Andr | cvebase.io