VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
epss	0.01509	https://api.first.org/data/v1/epss?cve=CVE-2015-7575
cvssv2	4.3	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2015-7575
cvssv3	5.9	https://nvd.nist.gov/vuln/detail/CVE-2015-7575
generic_textual	none	https://www.mozilla.org/en-US/security/advisories/mfsa2015-150

System

Score

Found at

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

epss

0.01509

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

cvssv2

4.3

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2015-7575

cvssv3

5.9

https://nvd.nist.gov/vuln/detail/CVE-2015-7575

generic_textual

none

https://www.mozilla.org/en-US/security/advisories/mfsa2015-150

Reference id

Reference type

URL

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00041.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html

http://lists.opensuse.org/opensuse-updates/2015-12/msg00139.html

http://lists.opensuse.org/opensuse-updates/2016-01/msg00005.html

http://lists.opensuse.org/opensuse-updates/2016-01/msg00058.html

http://lists.opensuse.org/opensuse-updates/2016-01/msg00059.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00007.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00008.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00101.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00166.html

http://rhn.redhat.com/errata/RHSA-2016-0049.html

http://rhn.redhat.com/errata/RHSA-2016-0050.html

http://rhn.redhat.com/errata/RHSA-2016-0053.html

http://rhn.redhat.com/errata/RHSA-2016-0054.html

http://rhn.redhat.com/errata/RHSA-2016-0055.html

http://rhn.redhat.com/errata/RHSA-2016-0056.html

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7575.json

https://api.first.org/data/v1/epss?cve=CVE-2015-7575

https://bugzilla.mozilla.org/show_bug.cgi?id=1158489

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4734

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4803

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4805

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4806

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4835

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4842

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4843

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4844

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4860

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4872

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4881

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4882

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4883

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4893

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4903

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4911

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7575

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0402

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0448

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0466

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0483

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0494

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1523

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1526

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1930

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1935

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1950

https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.20.2_release_notes

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

https://security.netapp.com/advisory/ntap-20160225-0001/

http://www.debian.org/security/2016/dsa-3436

http://www.debian.org/security/2016/dsa-3437

http://www.debian.org/security/2016/dsa-3457

http://www.debian.org/security/2016/dsa-3458

http://www.debian.org/security/2016/dsa-3465

http://www.debian.org/security/2016/dsa-3491

http://www.debian.org/security/2016/dsa-3688

http://www.mozilla.org/security/announce/2015/mfsa2015-150.html

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

http://www.securityfocus.com/bid/79684

http://www.securityfocus.com/bid/91787

http://www.securitytracker.com/id/1034541

http://www.securitytracker.com/id/1036467

http://www.ubuntu.com/usn/USN-2863-1

http://www.ubuntu.com/usn/USN-2864-1

http://www.ubuntu.com/usn/USN-2865-1

http://www.ubuntu.com/usn/USN-2866-1

http://www.ubuntu.com/usn/USN-2884-1

http://www.ubuntu.com/usn/USN-2904-1

1289841

https://bugzilla.redhat.com/show_bug.cgi?id=1289841

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.1.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.1.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.2.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.2.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.2.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.3.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.3.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.4.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.4.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.5.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.5.0:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox:38.5.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:38.5.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:network_security_services:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:network_security_services:*:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

CVE-2015-7575

https://nvd.nist.gov/vuln/detail/CVE-2015-7575

GLSA-201605-06

https://security.gentoo.org/glsa/201605-06

GLSA-201701-46

https://security.gentoo.org/glsa/201701-46

GLSA-201706-18

https://security.gentoo.org/glsa/201706-18

GLSA-201801-15

https://security.gentoo.org/glsa/201801-15

mfsa2015-150

https://www.mozilla.org/en-US/security/advisories/mfsa2015-150

RHSA-2016:0007

https://access.redhat.com/errata/RHSA-2016:0007

RHSA-2016:0008

https://access.redhat.com/errata/RHSA-2016:0008

RHSA-2016:0012

https://access.redhat.com/errata/RHSA-2016:0012

RHSA-2016:0049

https://access.redhat.com/errata/RHSA-2016:0049

RHSA-2016:0050

https://access.redhat.com/errata/RHSA-2016:0050

RHSA-2016:0053

https://access.redhat.com/errata/RHSA-2016:0053

RHSA-2016:0054

https://access.redhat.com/errata/RHSA-2016:0054

RHSA-2016:0055

https://access.redhat.com/errata/RHSA-2016:0055

RHSA-2016:0056

https://access.redhat.com/errata/RHSA-2016:0056

RHSA-2016:0098

https://access.redhat.com/errata/RHSA-2016:0098

RHSA-2016:0099

https://access.redhat.com/errata/RHSA-2016:0099

RHSA-2016:0100

https://access.redhat.com/errata/RHSA-2016:0100

RHSA-2016:0101

https://access.redhat.com/errata/RHSA-2016:0101

RHSA-2016:1430

https://access.redhat.com/errata/RHSA-2016:1430

USN-2863-1

https://usn.ubuntu.com/2863-1/

USN-2864-1

https://usn.ubuntu.com/2864-1/

USN-2865-1

https://usn.ubuntu.com/2865-1/

USN-2866-1

https://usn.ubuntu.com/2866-1/

USN-2884-1

https://usn.ubuntu.com/2884-1/

USN-2904-1

https://usn.ubuntu.com/2904-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:01:30.143340+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201706-18	38.0.0

2026-04-01T13:01:30.143340+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201706-18

38.0.0

Vulnerability ID	VCID-qup9-qy11-fqhe
Aliases	CVE-2015-7575
Summary	Multiple vulnerabilities have been found in mbed TLS, the worst of which could lead to the remote execution of arbitrary code.
Status	Published
Exploitability	0.5
Weighted Severity	5.3
Risk	2.6
Affected and Fixed Packages	Package Details

Percentile	0.81125
EPSS Score	0.01509
Published At	April 1, 2026, 12:55 p.m.