CVE-2014-1502

CVE Database · CVE-2014-1502

CVE-2014-1502

· N/AModified

CVSS v3.1

N/A

EPSS

1.15%

Published

Mar 19, 2014

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The (1) WebGL.compressedTexImage2D and (2) WebGL.compressedTexSubImage2D functions in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to bypass the Same Origin Policy and render content in a different domain via unspecified vectors.

Weaknesses (CWE)

CWE-346

Affected Products (10)

opensuse · opensusevulnerable

opensuse_project · opensusevulnerable

suse · linux_enterprise_desktopvulnerable

suse · linux_enterprise_servervulnerable

suse · linux_enterprise_software_development_kitvulnerable

oracle · solarisvulnerable

mozilla · firefox (up to 28.0)vulnerable

mozilla · seamonkey

References (16)