Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/nss@3.12.3.99.3-1?arch=el5_2

Type rpm

Namespace redhat

Name nss

Version 3.12.3.99.3-1

Qualifiers

arch	el5_2

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-463u-49k5-w3b2

vulnerability_id VCID-463u-49k5-w3b2

summary

Multiple vulnerabilities in the Sun JDK and JRE allow for several attacks,
    including the remote execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2409.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2409.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2409

reference_id

reference_type

scores

value	0.02215
scoring_system	epss
scoring_elements	0.84838
published_at	2026-06-11T12:55:00Z

value	0.02215
scoring_system	epss
scoring_elements	0.8489
published_at	2026-06-12T12:55:00Z

value	0.02215
scoring_system	epss
scoring_elements	0.84898
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2409
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2409

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=510197
reference_id	510197
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=510197

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539895
reference_id	539895
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539895

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539899
reference_id	539899
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539899

reference_url	https://security.gentoo.org/glsa/200911-02
reference_id	GLSA-200911-02
reference_type
scores
url	https://security.gentoo.org/glsa/200911-02

reference_url	https://security.gentoo.org/glsa/200912-01
reference_id	GLSA-200912-01
reference_type
scores
url	https://security.gentoo.org/glsa/200912-01

reference_url	https://access.redhat.com/errata/RHSA-2009:1184
reference_id	RHSA-2009:1184
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1184

reference_url	https://access.redhat.com/errata/RHSA-2009:1186
reference_id	RHSA-2009:1186
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1186

reference_url	https://access.redhat.com/errata/RHSA-2009:1190
reference_id	RHSA-2009:1190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1190

reference_url	https://access.redhat.com/errata/RHSA-2009:1207
reference_id	RHSA-2009:1207
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1207

reference_url	https://access.redhat.com/errata/RHSA-2009:1432
reference_id	RHSA-2009:1432
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1432

reference_url	https://access.redhat.com/errata/RHSA-2009:1560
reference_id	RHSA-2009:1560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1560

reference_url	https://access.redhat.com/errata/RHSA-2009:1571
reference_id	RHSA-2009:1571
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1571

reference_url	https://access.redhat.com/errata/RHSA-2009:1584
reference_id	RHSA-2009:1584
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1584

reference_url	https://access.redhat.com/errata/RHSA-2009:1662
reference_id	RHSA-2009:1662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1662

reference_url	https://access.redhat.com/errata/RHSA-2010:0054
reference_id	RHSA-2010:0054
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0054

reference_url	https://usn.ubuntu.com/809-1/
reference_id	USN-809-1
reference_type
scores
url	https://usn.ubuntu.com/809-1/

reference_url	https://usn.ubuntu.com/810-1/
reference_id	USN-810-1
reference_type
scores
url	https://usn.ubuntu.com/810-1/

reference_url	https://usn.ubuntu.com/830-1/
reference_id	USN-830-1
reference_type
scores
url	https://usn.ubuntu.com/830-1/

reference_url	https://usn.ubuntu.com/859-1/
reference_id	USN-859-1
reference_type
scores
url	https://usn.ubuntu.com/859-1/

fixed_packages

aliases CVE-2009-2409

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-463u-49k5-w3b2

url

VCID-panh-y7vm-n7cq

vulnerability_id

VCID-panh-y7vm-n7cq

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2404.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2404.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2404

reference_id

reference_type

scores

value	0.21024
scoring_system	epss
scoring_elements	0.95775
published_at	2026-06-11T12:55:00Z

value	0.21024
scoring_system	epss
scoring_elements	0.9579
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2404

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2404
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2404

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=512912
reference_id	512912
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=512912

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539934
reference_id	539934
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539934

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-43

reference_id

mfsa2009-43

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-43

reference_url	https://access.redhat.com/errata/RHSA-2009:1184
reference_id	RHSA-2009:1184
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1184

reference_url	https://access.redhat.com/errata/RHSA-2009:1185
reference_id	RHSA-2009:1185
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1185

reference_url	https://access.redhat.com/errata/RHSA-2009:1186
reference_id	RHSA-2009:1186
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1186

reference_url	https://access.redhat.com/errata/RHSA-2009:1190
reference_id	RHSA-2009:1190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1190

reference_url	https://access.redhat.com/errata/RHSA-2009:1207
reference_id	RHSA-2009:1207
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1207

reference_url	https://usn.ubuntu.com/810-1/
reference_id	USN-810-1
reference_type
scores
url	https://usn.ubuntu.com/810-1/

fixed_packages

aliases

CVE-2009-2404

risk_score

4.5

exploitability

0.5

weighted_severity

9.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-panh-y7vm-n7cq

url

VCID-s56z-qfac-5qd1

vulnerability_id

VCID-s56z-qfac-5qd1

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2408.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2408.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2408

reference_id

reference_type

scores

value	0.01855
scoring_system	epss
scoring_elements	0.83439
published_at	2026-06-11T12:55:00Z

value	0.01855
scoring_system	epss
scoring_elements	0.83499
published_at	2026-06-12T12:55:00Z

value	0.01855
scoring_system	epss
scoring_elements	0.83507
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2408

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2408
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2408

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=510251
reference_id	510251
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=510251

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539934
reference_id	539934
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539934

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-42

reference_id

mfsa2009-42

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-42

reference_url	https://access.redhat.com/errata/RHSA-2009:1184
reference_id	RHSA-2009:1184
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1184

reference_url	https://access.redhat.com/errata/RHSA-2009:1186
reference_id	RHSA-2009:1186
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1186

reference_url	https://access.redhat.com/errata/RHSA-2009:1190
reference_id	RHSA-2009:1190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1190

reference_url	https://access.redhat.com/errata/RHSA-2009:1207
reference_id	RHSA-2009:1207
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1207

reference_url	https://access.redhat.com/errata/RHSA-2009:1432
reference_id	RHSA-2009:1432
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1432

reference_url	https://usn.ubuntu.com/810-1/
reference_id	USN-810-1
reference_type
scores
url	https://usn.ubuntu.com/810-1/

fixed_packages

aliases

CVE-2009-2408

risk_score

4.5

exploitability

0.5

weighted_severity

9.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-s56z-qfac-5qd1

Fixing_vulnerabilities

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nss@3.12.3.99.3-1%3Farch=el5_2

Package Instance