[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2015-2716":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":102,"related":103,"reserved_at":9,"published_at":110,"modified_at":111,"state":112,"summary":113,"references_raw":122,"kevs":215,"epss":216,"epss_history":219,"metrics":474,"affected":479},"CVE-2015-2716","Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code by providing a large amount of compressed XML data, a related issue to CVE-2015-1283.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100],{"_key":73},"RHSA-2015:0988",{"_key":75},"RHSA-2015:1012",{"_key":77},"RHSA-2020:1011",{"_key":79},"RHSA-2020:2508",{"_key":81},"OPENSUSE-SU-2024:10071-1",{"_key":83},"SUSE-SU-2015:0960-1",{"_key":85},"OPENSUSE-SU-2024:10230-1",{"_key":87},"OPENSUSE-SU-2024:14572-1",{"_key":89},"DSA-3260-1",{"_key":91},"DSA-3264-1",{"_key":93},"MGASA-2015-0234",{"_key":95},"MGASA-2015-0342",{"_key":97},"UBUNTU-CVE-2015-2716",{"_key":99},"USN-2602-1",{"_key":101},"USN-2603-1",[],[104,105,106,107,108,109],{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":93},{"_key":95},"2015-05-14T10:00:00.000Z","2024-08-06T05:24:37.933Z","Modified",{"cisa_kev":114,"cisa_ransomware":114,"cisa_vendor":9,"epss_severity":115,"epss_score":116,"severity":117,"severity_score":118,"severity_version":119,"severity_source":120,"severity_vector":121,"severity_status":112},false,"low",0.05614,"high",7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[123,130,135,140,144,150,155,160,164,168,172,177,181,185,189,193,197,201,206,211],{"url":124,"sources":125,"tags":127},"http://www.ubuntu.com/usn/USN-2602-1",[126,120],"cve.org",[128,129],"Vendor Advisory","X Refsource UBUNTU",{"url":131,"sources":132,"tags":133},"http://rhn.redhat.com/errata/RHSA-2015-0988.html",[126,120],[128,134],"X Refsource REDHAT",{"url":136,"sources":137,"tags":138},"https://www.tenable.com/security/tns-2016-20",[126,120],[139],"X Refsource CONFIRM",{"url":141,"sources":142,"tags":143},"https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.7",[126,120],[139],{"url":145,"sources":146,"tags":147},"http://www.securityfocus.com/bid/74611",[126,120],[148,149],"VDB Entry","X Refsource BID",{"url":151,"sources":152,"tags":153},"http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html",[126,120],[128,154],"X Refsource SUSE",{"url":156,"sources":157,"tags":158},"http://www.debian.org/security/2015/dsa-3264",[126,120],[128,159],"X Refsource DEBIAN",{"url":161,"sources":162,"tags":163},"http://www.debian.org/security/2015/dsa-3260",[126,120],[128,159],{"url":165,"sources":166,"tags":167},"http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00000.html",[126,120],[128,154],{"url":169,"sources":170,"tags":171},"https://hg.mozilla.org/releases/mozilla-esr31/rev/2f3e78643f5c",[126,120],[139],{"url":173,"sources":174,"tags":175},"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",[126,120],[139,176],"Third Party Advisory",{"url":178,"sources":179,"tags":180},"http://lists.opensuse.org/opensuse-updates/2015-05/msg00036.html",[126,120],[128,154,176],{"url":182,"sources":183,"tags":184},"http://www.mozilla.org/security/announce/2015/mfsa2015-54.html",[126,120],[139,128],{"url":186,"sources":187,"tags":188},"http://www.ubuntu.com/usn/USN-2603-1",[126,120],[128,129],{"url":190,"sources":191,"tags":192},"http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00054.html",[126,120],[128,154,176],{"url":194,"sources":195,"tags":196},"http://rhn.redhat.com/errata/RHSA-2015-1012.html",[126,120],[128,134],{"url":198,"sources":199,"tags":200},"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html",[126,120],[128,154],{"url":202,"sources":203,"tags":204},"https://security.gentoo.org/glsa/201605-06",[126,120],[128,205],"X Refsource GENTOO",{"url":207,"sources":208,"tags":209},"https://bugzilla.mozilla.org/show_bug.cgi?id=1140537",[126,120],[139,210],"Issue Tracking",{"url":212,"sources":213,"tags":214},"https://kc.mcafee.com/corporate/index?page=content&id=SB10365",[126,120],[139],[],{"date":217,"score":116,"percentile":218},"2026-06-05",0.90501,[220,224,227,230,233,235,238,241,244,247,250,253,256,259,261,264,267,270,273,275,278,280,283,286,288,291,294,297,300,303,306,309,311,314,317,319,321,324,327,330,333,335,338,340,343,346,348,351,354,357,360,363,366,369,372,374,377,380,383,386,389,393,396,399,402,405,408,411,414,417,419,422,425,428,431,434,436,438,441,444,447,449,452,455,458,461,463,465,468,471],{"date":221,"score":222,"percentile":223},"2025-11-04",0.05603,0.89881,{"date":225,"score":222,"percentile":226},"2025-11-05",0.8988,{"date":228,"score":222,"percentile":229},"2025-11-06",0.89878,{"date":231,"score":222,"percentile":232},"2025-11-07",0.89885,{"date":234,"score":222,"percentile":232},"2025-11-08",{"date":236,"score":222,"percentile":237},"2025-11-09",0.89884,{"date":239,"score":222,"percentile":240},"2025-11-10",0.89882,{"date":242,"score":222,"percentile":243},"2025-11-11",0.89879,{"date":245,"score":222,"percentile":246},"2025-11-12",0.89887,{"date":248,"score":222,"percentile":249},"2025-11-13",0.8989,{"date":251,"score":222,"percentile":252},"2025-11-14",0.89893,{"date":254,"score":222,"percentile":255},"2025-11-15",0.89891,{"date":257,"score":222,"percentile":258},"2025-11-16",0.89894,{"date":260,"score":222,"percentile":255},"2025-11-17",{"date":262,"score":222,"percentile":263},"2025-11-18",0.8936,{"date":265,"score":222,"percentile":266},"2025-11-19",0.89364,{"date":268,"score":222,"percentile":269},"2025-11-20",0.89366,{"date":271,"score":222,"percentile":272},"2025-11-21",0.89902,{"date":274,"score":222,"percentile":272},"2025-11-22",{"date":276,"score":222,"percentile":277},"2025-11-23",0.89899,{"date":279,"score":222,"percentile":272},"2025-11-24",{"date":281,"score":222,"percentile":282},"2025-11-25",0.89907,{"date":284,"score":222,"percentile":285},"2025-11-26",0.89909,{"date":287,"score":222,"percentile":285},"2025-11-27",{"date":289,"score":222,"percentile":290},"2025-11-28",0.899,{"date":292,"score":222,"percentile":293},"2025-11-29",0.89961,{"date":295,"score":222,"percentile":296},"2025-11-30",0.89962,{"date":298,"score":222,"percentile":299},"2025-12-01",0.9002,{"date":301,"score":222,"percentile":302},"2025-12-02",0.90024,{"date":304,"score":222,"percentile":305},"2025-12-03",0.90026,{"date":307,"score":222,"percentile":308},"2025-12-04",0.89967,{"date":310,"score":222,"percentile":308},"2025-12-05",{"date":312,"score":222,"percentile":313},"2025-12-06",0.89966,{"date":315,"score":222,"percentile":316},"2025-12-07",0.89964,{"date":318,"score":222,"percentile":316},"2025-12-08",{"date":320,"score":222,"percentile":313},"2025-12-09",{"date":322,"score":222,"percentile":323},"2025-12-10",0.89977,{"date":325,"score":222,"percentile":326},"2025-12-11",0.8998,{"date":328,"score":222,"percentile":329},"2025-12-12",0.89985,{"date":331,"score":222,"percentile":332},"2025-12-13",0.89989,{"date":334,"score":222,"percentile":332},"2025-12-14",{"date":336,"score":222,"percentile":337},"2025-12-15",0.8999,{"date":339,"score":222,"percentile":329},"2025-12-16",{"date":341,"score":222,"percentile":342},"2025-12-17",0.89993,{"date":344,"score":222,"percentile":345},"2025-12-18",0.90001,{"date":347,"score":222,"percentile":345},"2025-12-19",{"date":349,"score":222,"percentile":350},"2025-12-20",0.9,{"date":352,"score":222,"percentile":353},"2025-12-21",0.90009,{"date":355,"score":222,"percentile":356},"2025-12-22",0.90011,{"date":358,"score":222,"percentile":359},"2025-12-23",0.90013,{"date":361,"score":222,"percentile":362},"2025-12-24",0.90018,{"date":364,"score":222,"percentile":365},"2025-12-25",0.9003,{"date":367,"score":222,"percentile":368},"2025-12-26",0.90029,{"date":370,"score":222,"percentile":371},"2025-12-27",0.90077,{"date":373,"score":222,"percentile":302},"2025-12-28",{"date":375,"score":222,"percentile":376},"2025-12-29",0.90021,{"date":378,"score":222,"percentile":379},"2025-12-30",0.90027,{"date":381,"score":222,"percentile":382},"2025-12-31",0.90035,{"date":384,"score":222,"percentile":385},"2026-01-01",0.90103,{"date":387,"score":222,"percentile":388},"2026-01-02",0.90097,{"date":390,"score":391,"percentile":392},"2026-01-03",0.055,0.89995,{"date":394,"score":391,"percentile":395},"2026-01-04",0.89932,{"date":397,"score":391,"percentile":398},"2026-01-05",0.89929,{"date":400,"score":391,"percentile":401},"2026-01-06",0.89931,{"date":403,"score":391,"percentile":404},"2026-01-07",0.89934,{"date":406,"score":391,"percentile":407},"2026-01-08",0.89937,{"date":409,"score":391,"percentile":410},"2026-01-09",0.89938,{"date":412,"score":391,"percentile":413},"2026-01-10",0.89939,{"date":415,"score":391,"percentile":416},"2026-01-11",0.8993,{"date":418,"score":391,"percentile":416},"2026-01-12",{"date":420,"score":391,"percentile":421},"2026-01-13",0.89927,{"date":423,"score":391,"percentile":424},"2026-01-14",0.89941,{"date":426,"score":391,"percentile":427},"2026-01-15",0.89945,{"date":429,"score":391,"percentile":430},"2026-01-16",0.89949,{"date":432,"score":391,"percentile":433},"2026-01-17",0.89947,{"date":435,"score":391,"percentile":433},"2026-01-18",{"date":437,"score":391,"percentile":433},"2026-01-19",{"date":439,"score":391,"percentile":440},"2026-01-20",0.89948,{"date":442,"score":391,"percentile":443},"2026-01-21",0.8995,{"date":445,"score":391,"percentile":446},"2026-01-22",0.89954,{"date":448,"score":391,"percentile":296},"2026-01-23",{"date":450,"score":391,"percentile":451},"2026-01-24",0.89969,{"date":453,"score":391,"percentile":454},"2026-01-25",0.89968,{"date":456,"score":391,"percentile":457},"2026-01-26",0.89971,{"date":459,"score":391,"percentile":460},"2026-01-27",0.89973,{"date":462,"score":391,"percentile":326},"2026-01-28",{"date":464,"score":391,"percentile":326},"2026-01-29",{"date":466,"score":391,"percentile":467},"2026-01-30",0.89978,{"date":469,"score":391,"percentile":470},"2026-01-31",0.89979,{"date":472,"score":391,"percentile":473},"2026-02-01",0.90045,[475],{"source":120,"cvss_v2_0":476,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":118,"baseSeverity":9,"vectorString":121,"impactScore":477,"exploitabilityScore":478},6.4,10,[480,503,521,527,535,540,545,552],{"ecosystem":9,"name":481,"vendor":9,"product":481,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":482},"Firefox",[483,489,491,493,495,497,499,501],{"version":484,"is_range":485,"range_type":486,"version_start":9,"version_start_type":9,"version_end":487,"version_end_type":488,"fixed_in":9},"lte37.0.2",true,"cpe","37.0.2","including",{"version":490,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.0",{"version":492,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.1.0",{"version":494,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.1.1",{"version":496,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.3.0",{"version":498,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.5.1",{"version":500,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.5.2",{"version":502,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.5.3",{"ecosystem":9,"name":504,"vendor":505,"product":506,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":508},"firefox esr","mozilla","firefox_esr","a",[509,511,513,515,517,519],{"version":510,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.1",{"version":512,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.2",{"version":514,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.3",{"version":516,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.4",{"version":518,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.5",{"version":520,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31.6.0",{"ecosystem":9,"name":522,"vendor":505,"product":523,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":524},"Thunderbird","thunderbird",[525],{"version":526,"is_range":485,"range_type":486,"version_start":9,"version_start_type":9,"version_end":518,"version_end_type":488,"fixed_in":9},"lte31.5",{"ecosystem":9,"name":528,"vendor":529,"product":530,"cpe_part":531,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":532},"suse linux enterprise desktop","novell","suse_linux_enterprise_desktop","o",[533],{"version":534,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.0",{"ecosystem":9,"name":536,"vendor":529,"product":537,"cpe_part":531,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":538},"suse linux enterprise server","suse_linux_enterprise_server",[539],{"version":534,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":541,"vendor":529,"product":542,"cpe_part":507,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":543},"suse linux enterprise software development kit","suse_linux_enterprise_software_development_kit",[544],{"version":534,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":546,"vendor":546,"product":546,"cpe_part":531,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":547},"opensuse",[548,550],{"version":549,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1",{"version":551,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.2",{"ecosystem":9,"name":553,"vendor":9,"product":553,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":554},"Solaris",[555],{"version":556,"is_range":114,"range_type":486,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.3"]