Security Advisory

CVE-2015-7186

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-11-05 02:00:00

Last updated 2024-08-06 07:43:44

Assigner mozilla

State PUBLISHED

Description

Mozilla Firefox before 42.0 on Android allows user-assisted remote attackers to bypass the Same Origin Policy and trigger (1) a download or (2) cached profile-data reading via a file: URL in a saved HTML document.

← Browse all CVEs View on cve.org ↗