VYPR
Unrated severityNVD Advisory· Published Dec 16, 2015· Updated Jun 17, 2026

CVE-2015-7215

CVE-2015-7215

Description

The importScripts function in the Web Workers API implementation in Mozilla Firefox before 43.0 allows remote attackers to bypass the Same Origin Policy by triggering use of the no-cors mode in the fetch API to attempt resource access that throws an exception, leading to information disclosure after a rethrow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.