CVE-2015-7219 in Firefoxinfo

Summary

The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote attackers to cause a denial of service (integer underflow, assertion failure, and application exit) via a malformed PushPromise frame that triggers decompressed-buffer length miscalculation and incorrect memory allocation.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

09/16/2015

Disclosure

12/16/2015

Moderation

VulDB entry created

Entries

VDB-79813 (1)

CPE

ready

CWE

CWE-189 (Confirmed)

CVSS

5.3

EPSS

0.01259

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-7219
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-7219
CVE Details	https://www.cvedetails.com/cve/CVE-2015-7219/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!