Search for vulnerabilities
Vulnerability details: VCID-fgfx-47ad-6fda
Vulnerability ID VCID-fgfx-47ad-6fda
Aliases CVE-2014-1594
Summary Security researchers Byoungyoung Lee, Chengyu Song, and Taesoo Kim at the Georgia Tech Information Security Center (GTISC) reported a bad casting from the BasicThebesLayer to BasicContainerLayer, resulting in undefined behavior. This behavior is potentially exploitable with some compilers but no clear mechanism to trigger it through web content was identified.
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-749 Exposed Dangerous Method or Function
System Score Found at
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
epss 0.01693 https://api.first.org/data/v1/epss?cve=CVE-2014-1594
generic_textual high https://www.mozilla.org/en-US/security/advisories/mfsa2014-89
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-1594.json
https://api.first.org/data/v1/epss?cve=CVE-2014-1594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
1169210 https://bugzilla.redhat.com/show_bug.cgi?id=1169210
CVE-2014-1594 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1594
mfsa2014-89 https://www.mozilla.org/en-US/security/advisories/mfsa2014-89
RHSA-2014:1919 https://access.redhat.com/errata/RHSA-2014:1919
RHSA-2014:1924 https://access.redhat.com/errata/RHSA-2014:1924
USN-2424-1 https://usn.ubuntu.com/2424-1/
USN-2428-1 https://usn.ubuntu.com/2428-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.81476
EPSS Score 0.01693
Published At Aug. 7, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:10:44.840324+00:00 Mozilla Importer Import https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2014/mfsa2014-89.md 37.0.0