VYPR
Critical severity9.8NVD Advisory· Published Mar 19, 2014· Updated Jun 17, 2026

CVE-2014-1514

CVE-2014-1514

Description

vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 does not validate the length of the destination array before a copy operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by triggering incorrect use of the TypedArrayObject class.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

31

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.