[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2015-4487":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":102,"related":103,"reserved_at":9,"published_at":112,"modified_at":113,"state":114,"summary":115,"references_raw":124,"kevs":221,"epss":222,"epss_history":225,"metrics":479,"affected":484},"CVE-2015-4487","The nsTSubstring::ReplacePrep function in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors, related to an \"overflow.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90,92,94,96,98,100],{"_key":73},"SUSE-SU-2015:1528-1",{"_key":75},"RHSA-2015:1586",{"_key":77},"RHSA-2015:1682",{"_key":79},"OPENSUSE-SU-2024:10071-1",{"_key":81},"SUSE-SU-2015:1449-1",{"_key":83},"SUSE-SU-2015:1476-1",{"_key":85},"OPENSUSE-SU-2024:10230-1",{"_key":87},"OPENSUSE-SU-2024:14572-1",{"_key":89},"DSA-3333-1",{"_key":91},"DSA-3410-1",{"_key":93},"MGASA-2015-0312",{"_key":95},"MGASA-2015-0330",{"_key":97},"UBUNTU-CVE-2015-4487",{"_key":99},"USN-2702-1",{"_key":101},"USN-2712-1",[],[104,105,106,107,108,109,110,111],{"_key":73},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":93},{"_key":95},"2015-08-16T01:00:00.000Z","2024-08-06T06:18:11.063Z","Modified",{"cisa_kev":116,"cisa_ransomware":116,"cisa_vendor":9,"epss_severity":117,"epss_score":118,"severity":119,"severity_score":120,"severity_version":121,"severity_source":122,"severity_vector":123,"severity_status":114},false,"low",0.02262,"high",7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[125,132,137,142,146,150,155,160,164,168,173,177,183,187,192,196,201,205,209,213,217],{"url":126,"sources":127,"tags":129},"http://www.debian.org/security/2015/dsa-3410",[128,122],"cve.org",[130,131],"Vendor Advisory","X Refsource DEBIAN",{"url":133,"sources":134,"tags":135},"http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html",[128,122],[130,136],"X Refsource SUSE",{"url":138,"sources":139,"tags":140},"http://www.ubuntu.com/usn/USN-2712-1",[128,122],[130,141],"X Refsource UBUNTU",{"url":143,"sources":144,"tags":145},"http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html",[128,122],[130,136],{"url":147,"sources":148,"tags":149},"http://www.ubuntu.com/usn/USN-2702-3",[128,122],[130,141],{"url":151,"sources":152,"tags":153},"http://rhn.redhat.com/errata/RHSA-2015-1682.html",[128,122],[130,154],"X Refsource REDHAT",{"url":156,"sources":157,"tags":158},"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html",[128,122],[130,136,159],"Third Party Advisory",{"url":161,"sources":162,"tags":163},"http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html",[128,122],[130,136],{"url":165,"sources":166,"tags":167},"http://rhn.redhat.com/errata/RHSA-2015-1586.html",[128,122],[130,154],{"url":169,"sources":170,"tags":171},"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",[128,122],[172,159],"X Refsource CONFIRM",{"url":174,"sources":175,"tags":176},"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00016.html",[128,122],[130,136],{"url":178,"sources":179,"tags":180},"http://www.securitytracker.com/id/1033247",[128,122],[181,182],"VDB Entry","X Refsource SECTRACK",{"url":184,"sources":185,"tags":186},"http://www.ubuntu.com/usn/USN-2702-2",[128,122],[130,141,159],{"url":188,"sources":189,"tags":190},"https://bugzilla.mozilla.org/show_bug.cgi?id=1171603",[128,122],[172,191],"Issue Tracking",{"url":193,"sources":194,"tags":195},"http://www.ubuntu.com/usn/USN-2702-1",[128,122],[130,141,159],{"url":197,"sources":198,"tags":199},"https://security.gentoo.org/glsa/201605-06",[128,122],[130,200],"X Refsource GENTOO",{"url":202,"sources":203,"tags":204},"http://www.securitytracker.com/id/1033372",[128,122],[181,182],{"url":206,"sources":207,"tags":208},"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html",[128,122],[130,136],{"url":210,"sources":211,"tags":212},"http://www.debian.org/security/2015/dsa-3333",[128,122],[130,131],{"url":214,"sources":215,"tags":216},"http://www.mozilla.org/security/announce/2015/mfsa2015-90.html",[128,122],[172,130],{"url":218,"sources":219,"tags":220},"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html",[128,122],[130,136,159],[],{"date":223,"score":118,"percentile":224},"2026-06-04",0.84925,[226,230,233,236,239,242,245,247,249,252,255,258,261,264,267,270,273,276,278,280,283,286,288,290,293,296,299,301,304,307,310,312,315,318,321,323,326,329,332,335,338,341,344,346,349,352,355,358,361,364,367,370,373,376,379,382,385,388,391,394,396,399,401,404,407,409,412,415,418,421,423,426,428,431,434,437,440,443,445,448,451,454,457,460,463,465,468,471,474,476],{"date":227,"score":228,"percentile":229},"2025-11-04",0.02676,0.85288,{"date":231,"score":228,"percentile":232},"2025-11-05",0.85291,{"date":234,"score":228,"percentile":235},"2025-11-06",0.85294,{"date":237,"score":228,"percentile":238},"2025-11-07",0.85301,{"date":240,"score":228,"percentile":241},"2025-11-08",0.85305,{"date":243,"score":228,"percentile":244},"2025-11-09",0.853,{"date":246,"score":228,"percentile":235},"2025-11-10",{"date":248,"score":228,"percentile":244},"2025-11-11",{"date":250,"score":228,"percentile":251},"2025-11-12",0.85311,{"date":253,"score":228,"percentile":254},"2025-11-13",0.85318,{"date":256,"score":228,"percentile":257},"2025-11-14",0.8532,{"date":259,"score":228,"percentile":260},"2025-11-15",0.85314,{"date":262,"score":228,"percentile":263},"2025-11-16",0.85312,{"date":265,"score":228,"percentile":266},"2025-11-17",0.85299,{"date":268,"score":228,"percentile":269},"2025-11-18",0.8451,{"date":271,"score":228,"percentile":272},"2025-11-19",0.84512,{"date":274,"score":228,"percentile":275},"2025-11-20",0.84519,{"date":277,"score":228,"percentile":260},"2025-11-21",{"date":279,"score":228,"percentile":251},"2025-11-22",{"date":281,"score":228,"percentile":282},"2025-11-23",0.85302,{"date":284,"score":228,"percentile":285},"2025-11-24",0.85303,{"date":287,"score":228,"percentile":244},"2025-11-25",{"date":289,"score":228,"percentile":285},"2025-11-26",{"date":291,"score":228,"percentile":292},"2025-11-27",0.85304,{"date":294,"score":228,"percentile":295},"2025-11-28",0.85285,{"date":297,"score":228,"percentile":298},"2025-11-29",0.8533,{"date":300,"score":228,"percentile":298},"2025-11-30",{"date":302,"score":228,"percentile":303},"2025-12-01",0.85389,{"date":305,"score":228,"percentile":306},"2025-12-02",0.85393,{"date":308,"score":228,"percentile":309},"2025-12-03",0.85394,{"date":311,"score":228,"percentile":298},"2025-12-04",{"date":313,"score":228,"percentile":314},"2025-12-05",0.85334,{"date":316,"score":228,"percentile":317},"2025-12-06",0.85331,{"date":319,"score":228,"percentile":320},"2025-12-07",0.85319,{"date":322,"score":228,"percentile":257},"2025-12-08",{"date":324,"score":228,"percentile":325},"2025-12-09",0.85327,{"date":327,"score":228,"percentile":328},"2025-12-10",0.85349,{"date":330,"score":228,"percentile":331},"2025-12-11",0.85356,{"date":333,"score":228,"percentile":334},"2025-12-12",0.8536,{"date":336,"score":228,"percentile":337},"2025-12-13",0.85357,{"date":339,"score":228,"percentile":340},"2025-12-14",0.85353,{"date":342,"score":228,"percentile":343},"2025-12-15",0.8535,{"date":345,"score":228,"percentile":331},"2025-12-16",{"date":347,"score":228,"percentile":348},"2025-12-17",0.85359,{"date":350,"score":228,"percentile":351},"2025-12-18",0.85364,{"date":353,"score":228,"percentile":354},"2025-12-19",0.85368,{"date":356,"score":228,"percentile":357},"2025-12-20",0.85362,{"date":359,"score":228,"percentile":360},"2025-12-21",0.85365,{"date":362,"score":228,"percentile":363},"2025-12-22",0.85363,{"date":365,"score":228,"percentile":366},"2025-12-23",0.8537,{"date":368,"score":228,"percentile":369},"2025-12-24",0.85374,{"date":371,"score":228,"percentile":372},"2025-12-25",0.8539,{"date":374,"score":228,"percentile":375},"2025-12-26",0.85392,{"date":377,"score":118,"percentile":378},"2025-12-27",0.84241,{"date":380,"score":228,"percentile":381},"2025-12-28",0.85383,{"date":383,"score":228,"percentile":384},"2025-12-29",0.85381,{"date":386,"score":228,"percentile":387},"2025-12-30",0.85388,{"date":389,"score":228,"percentile":390},"2025-12-31",0.85397,{"date":392,"score":228,"percentile":393},"2026-01-01",0.85455,{"date":395,"score":228,"percentile":393},"2026-01-02",{"date":397,"score":228,"percentile":398},"2026-01-03",0.85454,{"date":400,"score":228,"percentile":306},"2026-01-04",{"date":402,"score":228,"percentile":403},"2026-01-05",0.85387,{"date":405,"score":228,"percentile":406},"2026-01-06",0.85391,{"date":408,"score":228,"percentile":306},"2026-01-07",{"date":410,"score":228,"percentile":411},"2026-01-08",0.85402,{"date":413,"score":228,"percentile":414},"2026-01-09",0.85404,{"date":416,"score":228,"percentile":417},"2026-01-10",0.854,{"date":419,"score":228,"percentile":420},"2026-01-11",0.85395,{"date":422,"score":228,"percentile":387},"2026-01-12",{"date":424,"score":228,"percentile":425},"2026-01-13",0.85382,{"date":427,"score":228,"percentile":417},"2026-01-14",{"date":429,"score":228,"percentile":430},"2026-01-15",0.85399,{"date":432,"score":228,"percentile":433},"2026-01-16",0.85406,{"date":435,"score":228,"percentile":436},"2026-01-17",0.85412,{"date":438,"score":228,"percentile":439},"2026-01-18",0.85408,{"date":441,"score":228,"percentile":442},"2026-01-19",0.85405,{"date":444,"score":228,"percentile":439},"2026-01-20",{"date":446,"score":228,"percentile":447},"2026-01-21",0.85414,{"date":449,"score":228,"percentile":450},"2026-01-22",0.85418,{"date":452,"score":228,"percentile":453},"2026-01-23",0.85429,{"date":455,"score":228,"percentile":456},"2026-01-24",0.85439,{"date":458,"score":228,"percentile":459},"2026-01-25",0.85435,{"date":461,"score":228,"percentile":462},"2026-01-26",0.85434,{"date":464,"score":228,"percentile":456},"2026-01-27",{"date":466,"score":228,"percentile":467},"2026-01-28",0.85445,{"date":469,"score":228,"percentile":470},"2026-01-29",0.85447,{"date":472,"score":228,"percentile":473},"2026-01-30",0.85448,{"date":475,"score":228,"percentile":470},"2026-01-31",{"date":477,"score":228,"percentile":478},"2026-02-01",0.85509,[480],{"source":122,"cvss_v2_0":481,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":120,"baseSeverity":9,"vectorString":123,"impactScore":482,"exploitabilityScore":483},6.4,10,[485,498,517,524,531],{"ecosystem":9,"name":486,"vendor":487,"product":488,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":490},"ubuntu linux","canonical","ubuntu_linux","o",[491,494,496],{"version":492,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.04","cpe",{"version":495,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04",{"version":497,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.04",{"ecosystem":9,"name":499,"vendor":500,"product":501,"cpe_part":502,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":503},"Firefox","mozilla","firefox","a",[504,509,511,513,515],{"version":505,"is_range":506,"range_type":493,"version_start":9,"version_start_type":9,"version_end":507,"version_end_type":508,"fixed_in":9},"lte39.0.3",true,"39.0.3","including",{"version":510,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0",{"version":512,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0.1",{"version":514,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.0.5",{"version":516,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"38.1.0",{"ecosystem":9,"name":518,"vendor":500,"product":519,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":520},"firefox os","firefox_os",[521],{"version":522,"is_range":506,"range_type":493,"version_start":9,"version_start_type":9,"version_end":523,"version_end_type":508,"fixed_in":9},"lte2.1.0","2.1.0",{"ecosystem":9,"name":525,"vendor":525,"product":525,"cpe_part":489,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":526},"opensuse",[527,529],{"version":528,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.1",{"version":530,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"13.2",{"ecosystem":9,"name":532,"vendor":9,"product":532,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"Solaris",[534],{"version":535,"is_range":116,"range_type":493,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.3"]