Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/firefox@87.0-1
Typealpm
Namespacearchlinux
Namefirefox
Version87.0-1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version89.0.1-1
Latest_non_vulnerable_version101.0-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-7rjc-m97c-83bw
vulnerability_id VCID-7rjc-m97c-83bw
summary If an attacker is able to alter specific about:config values (for example malware running on the user's computer), the Devtools remote debugging feature could have been enabled in a way that was unnoticable to the user. This would have allowed a remote attacker (able to make a direct network connection to the victim) to monitor the user's browsing activity and (plaintext) network traffic. This was addressed by providing a visual cue when Devtools has an open network socket.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23985
reference_id
reference_type
scores
0
value 0.00747
scoring_system epss
scoring_elements 0.73434
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23985
1
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
2
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23985
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7rjc-m97c-83bw
1
url VCID-bhjp-7njc-xbf3
vulnerability_id VCID-bhjp-7njc-xbf3
summary By causing a transition on a parent node by removing a CSS rule, an invalid property for a marker could have been applied, resulting in memory corruption and a potentially exploitable crash.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23983
reference_id
reference_type
scores
0
value 0.0023
scoring_system epss
scoring_elements 0.45874
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23983
1
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
2
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23983
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bhjp-7njc-xbf3
2
url VCID-dvbc-un9c-dka7
vulnerability_id VCID-dvbc-un9c-dka7
summary Mozilla developers and community members Matthew Gregan, Tyson Smith, Julien Wajsberg, and Alexis Beingessner reported memory safety bugs present in Firefox 86 and Firefox ESR 78.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23987.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23987.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23987
reference_id
reference_type
scores
0
value 0.00387
scoring_system epss
scoring_elements 0.60147
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23987
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1942787
reference_id 1942787
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1942787
10
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
11
reference_url https://security.archlinux.org/AVG-1729
reference_id AVG-1729
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1729
12
reference_url https://security.gentoo.org/glsa/202104-09
reference_id GLSA-202104-09
reference_type
scores
url https://security.gentoo.org/glsa/202104-09
13
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
reference_id mfsa2021-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
reference_id mfsa2021-12
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
17
reference_url https://access.redhat.com/errata/RHSA-2021:0989
reference_id RHSA-2021:0989
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0989
18
reference_url https://access.redhat.com/errata/RHSA-2021:0990
reference_id RHSA-2021:0990
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0990
19
reference_url https://access.redhat.com/errata/RHSA-2021:0991
reference_id RHSA-2021:0991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0991
20
reference_url https://access.redhat.com/errata/RHSA-2021:0992
reference_id RHSA-2021:0992
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0992
21
reference_url https://access.redhat.com/errata/RHSA-2021:0993
reference_id RHSA-2021:0993
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0993
22
reference_url https://access.redhat.com/errata/RHSA-2021:0994
reference_id RHSA-2021:0994
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0994
23
reference_url https://access.redhat.com/errata/RHSA-2021:0995
reference_id RHSA-2021:0995
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0995
24
reference_url https://access.redhat.com/errata/RHSA-2021:0996
reference_id RHSA-2021:0996
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0996
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23987
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dvbc-un9c-dka7
3
url VCID-jf4p-n5ew-v3an
vulnerability_id VCID-jf4p-n5ew-v3an
summary A malicious extension with the 'search' permission could have installed a new search engine whose favicon referenced a cross-origin URL. The response to this cross-origin request could have been read by the extension, allowing a same-origin policy bypass by the extension, which should not have cross-origin permissions. This cross-origin request was made without cookies, so the sensitive information disclosed by the violation was limited to local-network resources or resources that perform IP-based authentication.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23986
reference_id
reference_type
scores
0
value 0.00087
scoring_system epss
scoring_elements 0.24914
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23986
1
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
2
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23986
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jf4p-n5ew-v3an
4
url VCID-mnc8-vfr4-s7a2
vulnerability_id VCID-mnc8-vfr4-s7a2
summary A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be fully controllable, but in this situation was. This could have been used to spoof a website and attempt to trick the user into providing credentials.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23984.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23984.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23984
reference_id
reference_type
scores
0
value 0.0029
scoring_system epss
scoring_elements 0.52669
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23984
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1942786
reference_id 1942786
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1942786
10
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
11
reference_url https://security.archlinux.org/AVG-1729
reference_id AVG-1729
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1729
12
reference_url https://security.gentoo.org/glsa/202104-09
reference_id GLSA-202104-09
reference_type
scores
url https://security.gentoo.org/glsa/202104-09
13
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
reference_id mfsa2021-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
reference_id mfsa2021-12
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
17
reference_url https://access.redhat.com/errata/RHSA-2021:0989
reference_id RHSA-2021:0989
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0989
18
reference_url https://access.redhat.com/errata/RHSA-2021:0990
reference_id RHSA-2021:0990
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0990
19
reference_url https://access.redhat.com/errata/RHSA-2021:0991
reference_id RHSA-2021:0991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0991
20
reference_url https://access.redhat.com/errata/RHSA-2021:0992
reference_id RHSA-2021:0992
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0992
21
reference_url https://access.redhat.com/errata/RHSA-2021:0993
reference_id RHSA-2021:0993
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0993
22
reference_url https://access.redhat.com/errata/RHSA-2021:0994
reference_id RHSA-2021:0994
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0994
23
reference_url https://access.redhat.com/errata/RHSA-2021:0995
reference_id RHSA-2021:0995
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0995
24
reference_url https://access.redhat.com/errata/RHSA-2021:0996
reference_id RHSA-2021:0996
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0996
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23984
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mnc8-vfr4-s7a2
5
url VCID-t42j-3sa7-dbdz
vulnerability_id VCID-t42j-3sa7-dbdz
summary Using techniques that built on the slipstream research, a malicious webpage could have scanned both an internal network's hosts as well as services running on the user's local machine utilizing WebRTC connections.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23982.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23982.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23982
reference_id
reference_type
scores
0
value 0.00163
scoring_system epss
scoring_elements 0.36976
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23982
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1942785
reference_id 1942785
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1942785
10
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
11
reference_url https://security.archlinux.org/AVG-1729
reference_id AVG-1729
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1729
12
reference_url https://security.gentoo.org/glsa/202104-09
reference_id GLSA-202104-09
reference_type
scores
url https://security.gentoo.org/glsa/202104-09
13
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
reference_id mfsa2021-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
reference_id mfsa2021-12
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
17
reference_url https://access.redhat.com/errata/RHSA-2021:0989
reference_id RHSA-2021:0989
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0989
18
reference_url https://access.redhat.com/errata/RHSA-2021:0990
reference_id RHSA-2021:0990
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0990
19
reference_url https://access.redhat.com/errata/RHSA-2021:0991
reference_id RHSA-2021:0991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0991
20
reference_url https://access.redhat.com/errata/RHSA-2021:0992
reference_id RHSA-2021:0992
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0992
21
reference_url https://access.redhat.com/errata/RHSA-2021:0993
reference_id RHSA-2021:0993
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0993
22
reference_url https://access.redhat.com/errata/RHSA-2021:0994
reference_id RHSA-2021:0994
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0994
23
reference_url https://access.redhat.com/errata/RHSA-2021:0995
reference_id RHSA-2021:0995
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0995
24
reference_url https://access.redhat.com/errata/RHSA-2021:0996
reference_id RHSA-2021:0996
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0996
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23982
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t42j-3sa7-dbdz
6
url VCID-uqnd-w9j9-9yh7
vulnerability_id VCID-uqnd-w9j9-9yh7
summary A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in memory corruption and a potentially exploitable information leak or crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23981.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23981.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23981
reference_id
reference_type
scores
0
value 0.00387
scoring_system epss
scoring_elements 0.60147
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23981
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1942783
reference_id 1942783
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1942783
10
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
11
reference_url https://security.archlinux.org/AVG-1729
reference_id AVG-1729
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1729
12
reference_url https://security.gentoo.org/glsa/202104-09
reference_id GLSA-202104-09
reference_type
scores
url https://security.gentoo.org/glsa/202104-09
13
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
reference_id mfsa2021-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-11
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
reference_id mfsa2021-12
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-12
17
reference_url https://access.redhat.com/errata/RHSA-2021:0989
reference_id RHSA-2021:0989
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0989
18
reference_url https://access.redhat.com/errata/RHSA-2021:0990
reference_id RHSA-2021:0990
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0990
19
reference_url https://access.redhat.com/errata/RHSA-2021:0991
reference_id RHSA-2021:0991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0991
20
reference_url https://access.redhat.com/errata/RHSA-2021:0992
reference_id RHSA-2021:0992
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0992
21
reference_url https://access.redhat.com/errata/RHSA-2021:0993
reference_id RHSA-2021:0993
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0993
22
reference_url https://access.redhat.com/errata/RHSA-2021:0994
reference_id RHSA-2021:0994
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0994
23
reference_url https://access.redhat.com/errata/RHSA-2021:0995
reference_id RHSA-2021:0995
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0995
24
reference_url https://access.redhat.com/errata/RHSA-2021:0996
reference_id RHSA-2021:0996
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0996
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23981
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uqnd-w9j9-9yh7
7
url VCID-wqx2-shku-xuft
vulnerability_id VCID-wqx2-shku-xuft
summary Mozilla developers Tyson Smith and Christian Holler reported memory safety bugs present in Firefox 86. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23988
reference_id
reference_type
scores
0
value 0.00296
scoring_system epss
scoring_elements 0.53158
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23988
1
reference_url https://security.archlinux.org/AVG-1728
reference_id AVG-1728
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1728
2
reference_url https://security.gentoo.org/glsa/202104-10
reference_id GLSA-202104-10
reference_type
scores
url https://security.gentoo.org/glsa/202104-10
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
reference_id mfsa2021-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-10
fixed_packages
0
url pkg:alpm/archlinux/firefox@87.0-1
purl pkg:alpm/archlinux/firefox@87.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1
aliases CVE-2021-23988
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wqx2-shku-xuft
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-1