Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-x2yk-hpvu-6fg6
Vulnerability ID VCID-x2yk-hpvu-6fg6
Aliases CVE-2015-4479
Summary Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-190 Integer Overflow or Wraparound
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
System Score Found at
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
epss 0.02255 https://api.first.org/data/v1/epss?cve=CVE-2015-4479
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2015-83
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4479.json
https://api.first.org/data/v1/epss?cve=CVE-2015-4479
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4473
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4475
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4478
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4479
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4480
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4484
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4487
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4488
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4489
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4492
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4493
1252285 https://bugzilla.redhat.com/show_bug.cgi?id=1252285
GLSA-201605-06 https://security.gentoo.org/glsa/201605-06
mfsa2015-83 https://www.mozilla.org/en-US/security/advisories/mfsa2015-83
RHSA-2015:1586 https://access.redhat.com/errata/RHSA-2015:1586
USN-2702-1 https://usn.ubuntu.com/2702-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.8452
EPSS Score 0.02255
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:04:47.166409+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201605-06 38.0.0