VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
epss	0.01664	https://api.first.org/data/v1/epss?cve=CVE-2015-7188
cvssv2	7.5	https://nvd.nist.gov/vuln/detail/CVE-2015-7188
generic_textual	high	https://www.mozilla.org/en-US/security/advisories/mfsa2015-122

System

Score

Found at

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

epss

0.01664

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

cvssv2

7.5

https://nvd.nist.gov/vuln/detail/CVE-2015-7188

generic_textual

high

https://www.mozilla.org/en-US/security/advisories/mfsa2015-122

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00013.html

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00015.html

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00021.html

http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00037.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00049.html

http://rhn.redhat.com/errata/RHSA-2015-1982.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7188.json

https://api.first.org/data/v1/epss?cve=CVE-2015-7188

https://bugzilla.mozilla.org/show_bug.cgi?id=1199430

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4473

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4487

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4488

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4489

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4513

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7183

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7188

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7189

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7193

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7194

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7196

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7197

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7198

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7199

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7200

http://www.debian.org/security/2015/dsa-3393

http://www.debian.org/security/2015/dsa-3410

http://www.mozilla.org/security/announce/2015/mfsa2015-122.html

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

http://www.securityfocus.com/bid/77411

http://www.securitytracker.com/id/1034069

http://www.ubuntu.com/usn/USN-2785-1

http://www.ubuntu.com/usn/USN-2819-1

1277343

https://bugzilla.redhat.com/show_bug.cgi?id=1277343

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.1.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.1.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.2.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.2.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.2.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.3.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.3.0:*:*:*:*:*:*:*

CVE-2015-7188

https://nvd.nist.gov/vuln/detail/CVE-2015-7188

GLSA-201512-10

https://security.gentoo.org/glsa/201512-10

mfsa2015-122

https://www.mozilla.org/en-US/security/advisories/mfsa2015-122

RHSA-2015:1982

https://access.redhat.com/errata/RHSA-2015:1982

USN-2785-1

https://usn.ubuntu.com/2785-1/

USN-2819-1

https://usn.ubuntu.com/2819-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:01:39.211111+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201512-10	38.0.0

2026-04-01T13:01:39.211111+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201512-10

38.0.0

Vulnerability ID	VCID-42u7-k34s-eug1
Aliases	CVE-2015-7188
Summary	Multiple vulnerabilities have been found in Mozilla Firefox and Thunderbird, the worst of which may allow user-assisted execution of arbitrary code.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-254	7PK - Security Features

Percentile	0.8202
EPSS Score	0.01664
Published At	April 1, 2026, 12:55 p.m.