USN-2557-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2015-0799 UBUNTU-CVE-2015-0799

Published: 07 Apr 2015, 10:03

Last modified:22 Apr 2026, 09:10

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

07 Apr 2015, 10:03

Published

Vulnerability first disclosed

22 Apr 2026, 09:10

Last Modified

Vulnerability information updated

Description

firefox vulnerability Muneaki Nishimura discovered a flaw in Mozilla's HTTP Alternative Services implementation which meant SSL certificate verification could be bypassed in some circumstances. A remote attacker could potentially exploit this to conduct a machine-in-the-middle attack. (CVE-2015-0799)

Affected Systems

ubuntu•firefox
< 37.0.1+build1-0ubuntu0.14.04.1

References (2)

https://ubuntu.com/security/notices/USN-2557-1
https://ubuntu.com/security/CVE-2015-0799