CVE-2014-8635

CWE-122 — Heap-based Buffer Overflow10 documents7 sources

Severity

7.5HIGH

EPSS

1.6%

top 18.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey

Timeline

PublishedJan 14

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDmozilla/firefox34.0.5

▶NVDmozilla/seamonkey2.31

▶Ubuntufirefox< 35.0+build3-0ubuntu0.14.04.2

🔴Vulnerability Details

GHSA

GHSA-gg4m-mr27-r5f8: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35↗2022-05-17

▶

OSV

firefox regression↗2015-01-27

▶

CVEList

CVE-2014-8635: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35↗2015-01-14

▶

OSV

CVE-2014-8635: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35↗2015-01-14

▶

OSV

firefox vulnerabilities↗2015-01-14

▶

📋Vendor Advisories

Red Hat

Mozilla: Miscellaneous memory safety hazards (rv:35.0) (MFSA 2015-01)↗2015-01-15

▶

Ubuntu

Firefox vulnerabilities↗2015-01-14

▶

💬Community

Bugzilla

CVE-2014-8635 Mozilla: Miscellaneous memory safety hazards (rv:35.0) (MFSA 2015-01)↗2015-01-12

▶