{"alias":[],"description":"Mozilla Firefox before 16.0 on Android assigns chrome privileges to Reader Mode pages, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.","epss":{"percentile":"0.45694","score":"0.002300"},"id":"CVE-2012-3987","metrics":{"cvss2":{"ac_insuf_info":0,"access_complexity":"HIGH","access_vector":"NETWORK","authentication":"NONE","availability_impact":"NONE","base_score":4.0,"base_severity":"MEDIUM","confidentiality_impact":"PARTIAL","exploitability_score":4.9,"impact_score":4.9,"integrity_impact":"PARTIAL","obtain_all_privilege":0,"obtain_other_privilege":0,"obtain_user_privilege":0,"user_interaction_required":1,"vector_string":"AV:N\/AC:H\/Au:N\/C:P\/I:P\/A:N","version":"2.0"}},"modified":"2026-04-29T01:13:23","nvd_status":"Modified","published":"2012-10-10T17:55:01","score":4.0,"severity":"MEDIUM","source":"cve@mitre.org","status":"PUBLISHED","weaknesses":[{"id":"CWE-264","name":"Permissions, Privileges, and Access Controls","type":"category"}]}