Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/358328?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "type": "apk", "namespace": "alpine", "name": "firefox", "version": "88.0-r0", "qualifiers": { "arch": "aarch64", "distroversion": "v3.15", "reponame": "community" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "88.0.1-r0", "latest_non_vulnerable_version": "94.0-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1259?format=api", "vulnerability_id": "VCID-1h7r-rcqz-abay", "summary": "The WebAssembly JIT could miscalculate the size of a return type, which could lead to a null read and result in a crash.\n*Note: This issue only affected x86-32 platforms. Other platforms are unaffected.*", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29945.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29945.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59266", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59241", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59291", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59294", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.59285", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951370", "reference_id": "1951370", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951370" }, { "reference_url": "https://security.archlinux.org/AVG-1835", "reference_id": "AVG-1835", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1835" }, { "reference_url": "https://security.archlinux.org/AVG-1837", "reference_id": "AVG-1837", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1837" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-29945" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1h7r-rcqz-abay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1253?format=api", "vulnerability_id": "VCID-5fw4-9nf9-h3d7", "summary": "A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23994.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23994.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60782", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60755", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60804", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60811", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00396", "scoring_system": "epss", "scoring_elements": "0.60799", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951364", "reference_id": "1951364", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951364" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23994" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5fw4-9nf9-h3d7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1281?format=api", "vulnerability_id": "VCID-64a3-rmee-qfb1", "summary": "A race condition with requestPointerLock() and setTimeout() could have resulted in a user interacting with one tab when they believed they were on a separate tab. In conjunction with certain elements (such as <input type=\"file\">) this could have led to an attack where a user was confused about the origin of the webpage and potentially disclosed information they did not intend to.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24000", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35664", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35735", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35746", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35706", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00153", "scoring_system": "epss", "scoring_elements": "0.35632", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24000" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-24000" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-64a3-rmee-qfb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1279?format=api", "vulnerability_id": "VCID-6ukw-38xv-huc2", "summary": "By utilizing 3D CSS in conjunction with Javascript, content could have been rendered outside the webpage's viewport, resulting in a spoofing attack that could have been used for phishing or other attacks on a user.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23996", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40234", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40208", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40179", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40151", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40237", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23996" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23996" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ukw-38xv-huc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1257?format=api", "vulnerability_id": "VCID-7ex1-ufcv-5yg8", "summary": "If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional privileges that should not be granted to web content.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23999.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23999.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.4667", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46648", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46715", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46717", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00236", "scoring_system": "epss", "scoring_elements": "0.46698", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951368", "reference_id": "1951368", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951368" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23999" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7ex1-ufcv-5yg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1260?format=api", "vulnerability_id": "VCID-7nqh-truu-7khb", "summary": "Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29946.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-29946.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37025", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.36998", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37089", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37096", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37064", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951371", "reference_id": "1951371", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951371" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-29946" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7nqh-truu-7khb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1282?format=api", "vulnerability_id": "VCID-7s86-8m73-wkax", "summary": "A compromised content process could have performed session history manipulations it should not have been able to due to testing infrastructure that was not restricted to testing-only configurations.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24001", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40234", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40208", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40179", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40151", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40237", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24001" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-24001" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7s86-8m73-wkax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1283?format=api", "vulnerability_id": "VCID-a9w5-355c-4ucv", "summary": "Lack of escaping allowed HTML injection when a webpage was viewed in Reader View. While a Content Security Policy prevents direct code execution, HTML injection is still possible.*Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29944", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.64623", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.6462", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.6461", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.6458", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.64631", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29944" }, { "reference_url": "https://security.archlinux.org/AVG-1835", "reference_id": "AVG-1835", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1835" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-29944" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a9w5-355c-4ucv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1280?format=api", "vulnerability_id": "VCID-bdcn-ak2b-1qbv", "summary": "Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with enough effort this could have been exploited to run arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23997", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40244", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40298", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40301", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40274", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00186", "scoring_system": "epss", "scoring_elements": "0.40216", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23997" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23997" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bdcn-ak2b-1qbv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1254?format=api", "vulnerability_id": "VCID-fhb3-5sbs-s7cq", "summary": "When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23995.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23995.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.73814", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.73803", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.73839", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.73844", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00765", "scoring_system": "epss", "scoring_elements": "0.7383", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951365", "reference_id": "1951365", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951365" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23995" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fhb3-5sbs-s7cq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1258?format=api", "vulnerability_id": "VCID-ppcj-1ng5-53hq", "summary": "When a user clicked on an FTP URL containing encoded newline characters (%0A and %0D), the newlines would have been interpreted as such and allowed arbitrary commands to be sent to the FTP server.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-24002.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-24002.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00356", "scoring_system": "epss", "scoring_elements": "0.58182", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00356", "scoring_system": "epss", "scoring_elements": "0.5815", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00356", "scoring_system": "epss", "scoring_elements": "0.582", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00356", "scoring_system": "epss", "scoring_elements": "0.58209", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00356", "scoring_system": "epss", "scoring_elements": "0.58197", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951369", "reference_id": "1951369", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951369" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-24002" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ppcj-1ng5-53hq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1284?format=api", "vulnerability_id": "VCID-xae7-bcs3-x7b1", "summary": "Mozilla developers and community members Ryan VanderMeulen, Sean Feng, Tyson Smith, Julian Seward, Christian Holler reported memory safety bugs present in Firefox 87. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29947", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57985", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.58002", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.5801", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.58", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00353", "scoring_system": "epss", "scoring_elements": "0.57951", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29947" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-29947" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xae7-bcs3-x7b1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1255?format=api", "vulnerability_id": "VCID-zjej-aua1-abbc", "summary": "Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23998.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23998.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.36998", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.36972", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37062", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37069", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37037", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951366", "reference_id": "1951366", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951366" }, { "reference_url": "https://security.archlinux.org/ASA-202104-3", "reference_id": "ASA-202104-3", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-3" }, { "reference_url": "https://security.archlinux.org/ASA-202104-4", "reference_id": "ASA-202104-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202104-4" }, { "reference_url": "https://security.archlinux.org/AVG-1834", "reference_id": "AVG-1834", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1834" }, { "reference_url": "https://security.archlinux.org/AVG-1836", "reference_id": "AVG-1836", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1836" }, { "reference_url": "https://security.gentoo.org/glsa/202104-09", "reference_id": "GLSA-202104-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-09" }, { "reference_url": "https://security.gentoo.org/glsa/202104-10", "reference_id": "GLSA-202104-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-10" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14", "reference_id": "mfsa2021-14", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-14" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15", "reference_id": "mfsa2021-15", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16", "reference_id": "mfsa2021-16", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2021-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1350", "reference_id": "RHSA-2021:1350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1351", "reference_id": "RHSA-2021:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1352", "reference_id": "RHSA-2021:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1353", "reference_id": "RHSA-2021:1353", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1360", "reference_id": "RHSA-2021:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1361", "reference_id": "RHSA-2021:1361", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1361" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1362", "reference_id": "RHSA-2021:1362", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1362" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1363", "reference_id": "RHSA-2021:1363", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1363" }, { "reference_url": "https://usn.ubuntu.com/4926-1/", "reference_id": "USN-4926-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4926-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-1/", "reference_id": "USN-4995-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-1/" }, { "reference_url": "https://usn.ubuntu.com/4995-2/", "reference_id": "USN-4995-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4995-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/358328?format=api", "purl": "pkg:apk/alpine/firefox@88.0-r0?arch=aarch64&distroversion=v3.15&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" } ], "aliases": [ "CVE-2021-23998" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjej-aua1-abbc" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@88.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community" }