Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/firefox@71.0-1
Typealpm
Namespacearchlinux
Namefirefox
Version71.0-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version72.0.1-1
Latest_non_vulnerable_version101.0-1
Affected_by_vulnerabilities
0
url VCID-6fvj-phnx-kfgs
vulnerability_id VCID-6fvj-phnx-kfgs
summary After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state, incoming Application Data records will be ignored.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17023.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17023.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17023
reference_id
reference_type
scores
0
value 0.00899
scoring_system epss
scoring_elements 0.75599
published_at 2026-04-01T12:55:00Z
1
value 0.00899
scoring_system epss
scoring_elements 0.75724
published_at 2026-04-24T12:55:00Z
2
value 0.00899
scoring_system epss
scoring_elements 0.75699
published_at 2026-04-18T12:55:00Z
3
value 0.00899
scoring_system epss
scoring_elements 0.75684
published_at 2026-04-21T12:55:00Z
4
value 0.00899
scoring_system epss
scoring_elements 0.75601
published_at 2026-04-02T12:55:00Z
5
value 0.00899
scoring_system epss
scoring_elements 0.75632
published_at 2026-04-04T12:55:00Z
6
value 0.00899
scoring_system epss
scoring_elements 0.75612
published_at 2026-04-07T12:55:00Z
7
value 0.00899
scoring_system epss
scoring_elements 0.75646
published_at 2026-04-08T12:55:00Z
8
value 0.00899
scoring_system epss
scoring_elements 0.75657
published_at 2026-04-13T12:55:00Z
9
value 0.00899
scoring_system epss
scoring_elements 0.75682
published_at 2026-04-11T12:55:00Z
10
value 0.00899
scoring_system epss
scoring_elements 0.75663
published_at 2026-04-12T12:55:00Z
11
value 0.00899
scoring_system epss
scoring_elements 0.75695
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17023
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17006
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17006
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17023
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17023
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12399
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12399
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12402
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12402
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1791225
reference_id 1791225
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1791225
7
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
8
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
10
reference_url https://access.redhat.com/errata/RHSA-2020:3280
reference_id RHSA-2020:3280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3280
11
reference_url https://access.redhat.com/errata/RHSA-2020:4076
reference_id RHSA-2020:4076
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4076
12
reference_url https://access.redhat.com/errata/RHSA-2021:0949
reference_id RHSA-2021:0949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0949
13
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
14
reference_url https://usn.ubuntu.com/4397-1/
reference_id USN-4397-1
reference_type
scores
url https://usn.ubuntu.com/4397-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17023
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6fvj-phnx-kfgs
1
url VCID-7hkk-2k6p-vyc7
vulnerability_id VCID-7hkk-2k6p-vyc7
summary 
Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which may allow execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17024.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17024.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17024
reference_id
reference_type
scores
0
value 0.03276
scoring_system epss
scoring_elements 0.87205
published_at 2026-04-24T12:55:00Z
1
value 0.03276
scoring_system epss
scoring_elements 0.87176
published_at 2026-04-12T12:55:00Z
2
value 0.03276
scoring_system epss
scoring_elements 0.87171
published_at 2026-04-13T12:55:00Z
3
value 0.03276
scoring_system epss
scoring_elements 0.87187
published_at 2026-04-16T12:55:00Z
4
value 0.03276
scoring_system epss
scoring_elements 0.87192
published_at 2026-04-18T12:55:00Z
5
value 0.03276
scoring_system epss
scoring_elements 0.87186
published_at 2026-04-21T12:55:00Z
6
value 0.03276
scoring_system epss
scoring_elements 0.87116
published_at 2026-04-01T12:55:00Z
7
value 0.03276
scoring_system epss
scoring_elements 0.87126
published_at 2026-04-02T12:55:00Z
8
value 0.03276
scoring_system epss
scoring_elements 0.87143
published_at 2026-04-04T12:55:00Z
9
value 0.03276
scoring_system epss
scoring_elements 0.8714
published_at 2026-04-07T12:55:00Z
10
value 0.03276
scoring_system epss
scoring_elements 0.8716
published_at 2026-04-08T12:55:00Z
11
value 0.03276
scoring_system epss
scoring_elements 0.87168
published_at 2026-04-09T12:55:00Z
12
value 0.03276
scoring_system epss
scoring_elements 0.87181
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17024
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1788727
reference_id 1788727
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1788727
8
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
9
reference_url https://security.archlinux.org/ASA-202001-4
reference_id ASA-202001-4
reference_type
scores
url https://security.archlinux.org/ASA-202001-4
10
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
11
reference_url https://security.archlinux.org/AVG-1086
reference_id AVG-1086
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1086
12
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
reference_id mfsa2020-02
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
reference_id mfsa2020-04
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
16
reference_url https://access.redhat.com/errata/RHSA-2020:0085
reference_id RHSA-2020:0085
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0085
17
reference_url https://access.redhat.com/errata/RHSA-2020:0086
reference_id RHSA-2020:0086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0086
18
reference_url https://access.redhat.com/errata/RHSA-2020:0111
reference_id RHSA-2020:0111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0111
19
reference_url https://access.redhat.com/errata/RHSA-2020:0120
reference_id RHSA-2020:0120
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0120
20
reference_url https://access.redhat.com/errata/RHSA-2020:0123
reference_id RHSA-2020:0123
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0123
21
reference_url https://access.redhat.com/errata/RHSA-2020:0127
reference_id RHSA-2020:0127
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0127
22
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
23
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
24
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
25
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
26
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17024
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7hkk-2k6p-vyc7
2
url VCID-9v4g-hwwe-3ybg
vulnerability_id VCID-9v4g-hwwe-3ybg
summary Mozilla developers Karl Tomlinson, Jason Kratzer, Tyson Smith, Jon Coppeard, and Christian Holler reported memory safety bugs present in Firefox 71. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17025
reference_id
reference_type
scores
0
value 0.00704
scoring_system epss
scoring_elements 0.72168
published_at 2026-04-24T12:55:00Z
1
value 0.00704
scoring_system epss
scoring_elements 0.72046
published_at 2026-04-01T12:55:00Z
2
value 0.00704
scoring_system epss
scoring_elements 0.72139
published_at 2026-04-18T12:55:00Z
3
value 0.00704
scoring_system epss
scoring_elements 0.72125
published_at 2026-04-21T12:55:00Z
4
value 0.00704
scoring_system epss
scoring_elements 0.72052
published_at 2026-04-02T12:55:00Z
5
value 0.00704
scoring_system epss
scoring_elements 0.72073
published_at 2026-04-04T12:55:00Z
6
value 0.00704
scoring_system epss
scoring_elements 0.72049
published_at 2026-04-07T12:55:00Z
7
value 0.00704
scoring_system epss
scoring_elements 0.72086
published_at 2026-04-08T12:55:00Z
8
value 0.00704
scoring_system epss
scoring_elements 0.72098
published_at 2026-04-09T12:55:00Z
9
value 0.00704
scoring_system epss
scoring_elements 0.72121
published_at 2026-04-11T12:55:00Z
10
value 0.00704
scoring_system epss
scoring_elements 0.72105
published_at 2026-04-12T12:55:00Z
11
value 0.00704
scoring_system epss
scoring_elements 0.72091
published_at 2026-04-13T12:55:00Z
12
value 0.00704
scoring_system epss
scoring_elements 0.72131
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17025
1
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
2
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
4
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17025
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9v4g-hwwe-3ybg
3
url VCID-ap8s-63rs-jyff
vulnerability_id VCID-ap8s-63rs-jyff
summary If an XML file is served with a Content Security Policy and the XML file includes an XSL stylesheet, the Content Security Policy will not be applied to the contents of the XSL stylesheet. If the XSL sheet e.g. includes JavaScript, it would bypass any of the restrictions of the Content Security Policy applied to the XML document.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17020.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17020.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17020
reference_id
reference_type
scores
0
value 0.00232
scoring_system epss
scoring_elements 0.45965
published_at 2026-04-01T12:55:00Z
1
value 0.00232
scoring_system epss
scoring_elements 0.46004
published_at 2026-04-24T12:55:00Z
2
value 0.00232
scoring_system epss
scoring_elements 0.46097
published_at 2026-04-16T12:55:00Z
3
value 0.00232
scoring_system epss
scoring_elements 0.46094
published_at 2026-04-18T12:55:00Z
4
value 0.00232
scoring_system epss
scoring_elements 0.46017
published_at 2026-04-02T12:55:00Z
5
value 0.00232
scoring_system epss
scoring_elements 0.46038
published_at 2026-04-21T12:55:00Z
6
value 0.00232
scoring_system epss
scoring_elements 0.45985
published_at 2026-04-07T12:55:00Z
7
value 0.00232
scoring_system epss
scoring_elements 0.46041
published_at 2026-04-08T12:55:00Z
8
value 0.00232
scoring_system epss
scoring_elements 0.46062
published_at 2026-04-11T12:55:00Z
9
value 0.00232
scoring_system epss
scoring_elements 0.46034
published_at 2026-04-12T12:55:00Z
10
value 0.00232
scoring_system epss
scoring_elements 0.46042
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17020
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1790800
reference_id 1790800
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1790800
3
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
4
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
6
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17020
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ap8s-63rs-jyff
4
url VCID-c4qs-a9kw-p3hc
vulnerability_id VCID-c4qs-a9kw-p3hc
summary 
Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which may allow execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17017.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17017.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17017
reference_id
reference_type
scores
0
value 0.0263
scoring_system epss
scoring_elements 0.85729
published_at 2026-04-24T12:55:00Z
1
value 0.0263
scoring_system epss
scoring_elements 0.85688
published_at 2026-04-12T12:55:00Z
2
value 0.0263
scoring_system epss
scoring_elements 0.85684
published_at 2026-04-13T12:55:00Z
3
value 0.0263
scoring_system epss
scoring_elements 0.85706
published_at 2026-04-16T12:55:00Z
4
value 0.0263
scoring_system epss
scoring_elements 0.85712
published_at 2026-04-18T12:55:00Z
5
value 0.0263
scoring_system epss
scoring_elements 0.85705
published_at 2026-04-21T12:55:00Z
6
value 0.0263
scoring_system epss
scoring_elements 0.85608
published_at 2026-04-01T12:55:00Z
7
value 0.0263
scoring_system epss
scoring_elements 0.85621
published_at 2026-04-02T12:55:00Z
8
value 0.0263
scoring_system epss
scoring_elements 0.85639
published_at 2026-04-04T12:55:00Z
9
value 0.0263
scoring_system epss
scoring_elements 0.85645
published_at 2026-04-07T12:55:00Z
10
value 0.0263
scoring_system epss
scoring_elements 0.85665
published_at 2026-04-08T12:55:00Z
11
value 0.0263
scoring_system epss
scoring_elements 0.85677
published_at 2026-04-09T12:55:00Z
12
value 0.0263
scoring_system epss
scoring_elements 0.85692
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17017
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1788724
reference_id 1788724
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1788724
8
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
9
reference_url https://security.archlinux.org/ASA-202001-4
reference_id ASA-202001-4
reference_type
scores
url https://security.archlinux.org/ASA-202001-4
10
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
11
reference_url https://security.archlinux.org/AVG-1086
reference_id AVG-1086
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1086
12
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
reference_id mfsa2020-02
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
reference_id mfsa2020-04
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
16
reference_url https://access.redhat.com/errata/RHSA-2020:0085
reference_id RHSA-2020:0085
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0085
17
reference_url https://access.redhat.com/errata/RHSA-2020:0086
reference_id RHSA-2020:0086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0086
18
reference_url https://access.redhat.com/errata/RHSA-2020:0111
reference_id RHSA-2020:0111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0111
19
reference_url https://access.redhat.com/errata/RHSA-2020:0120
reference_id RHSA-2020:0120
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0120
20
reference_url https://access.redhat.com/errata/RHSA-2020:0123
reference_id RHSA-2020:0123
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0123
21
reference_url https://access.redhat.com/errata/RHSA-2020:0127
reference_id RHSA-2020:0127
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0127
22
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
23
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
24
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
25
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
26
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17017
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c4qs-a9kw-p3hc
5
url VCID-javq-3r82-73fq
vulnerability_id VCID-javq-3r82-73fq
summary 
Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which may allow execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17022.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17022.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17022
reference_id
reference_type
scores
0
value 0.04633
scoring_system epss
scoring_elements 0.89308
published_at 2026-04-24T12:55:00Z
1
value 0.04633
scoring_system epss
scoring_elements 0.89281
published_at 2026-04-09T12:55:00Z
2
value 0.04633
scoring_system epss
scoring_elements 0.8929
published_at 2026-04-21T12:55:00Z
3
value 0.04633
scoring_system epss
scoring_elements 0.89286
published_at 2026-04-12T12:55:00Z
4
value 0.04633
scoring_system epss
scoring_elements 0.89283
published_at 2026-04-13T12:55:00Z
5
value 0.04633
scoring_system epss
scoring_elements 0.89296
published_at 2026-04-18T12:55:00Z
6
value 0.04633
scoring_system epss
scoring_elements 0.89236
published_at 2026-04-01T12:55:00Z
7
value 0.04633
scoring_system epss
scoring_elements 0.89242
published_at 2026-04-02T12:55:00Z
8
value 0.04633
scoring_system epss
scoring_elements 0.89257
published_at 2026-04-04T12:55:00Z
9
value 0.04633
scoring_system epss
scoring_elements 0.89259
published_at 2026-04-07T12:55:00Z
10
value 0.04633
scoring_system epss
scoring_elements 0.89276
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17022
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1788726
reference_id 1788726
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1788726
8
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
9
reference_url https://security.archlinux.org/ASA-202001-4
reference_id ASA-202001-4
reference_type
scores
url https://security.archlinux.org/ASA-202001-4
10
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
11
reference_url https://security.archlinux.org/AVG-1086
reference_id AVG-1086
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1086
12
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
reference_id mfsa2020-02
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
reference_id mfsa2020-04
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
16
reference_url https://access.redhat.com/errata/RHSA-2020:0085
reference_id RHSA-2020:0085
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0085
17
reference_url https://access.redhat.com/errata/RHSA-2020:0086
reference_id RHSA-2020:0086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0086
18
reference_url https://access.redhat.com/errata/RHSA-2020:0111
reference_id RHSA-2020:0111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0111
19
reference_url https://access.redhat.com/errata/RHSA-2020:0120
reference_id RHSA-2020:0120
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0120
20
reference_url https://access.redhat.com/errata/RHSA-2020:0123
reference_id RHSA-2020:0123
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0123
21
reference_url https://access.redhat.com/errata/RHSA-2020:0127
reference_id RHSA-2020:0127
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0127
22
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
23
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
24
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
25
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
26
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17022
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-javq-3r82-73fq
6
url VCID-x12h-hqf2-37cc
vulnerability_id VCID-x12h-hqf2-37cc
summary 
Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which may allow execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17016.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17016.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17016
reference_id
reference_type
scores
0
value 0.03465
scoring_system epss
scoring_elements 0.87566
published_at 2026-04-24T12:55:00Z
1
value 0.03465
scoring_system epss
scoring_elements 0.87539
published_at 2026-04-12T12:55:00Z
2
value 0.03465
scoring_system epss
scoring_elements 0.87536
published_at 2026-04-13T12:55:00Z
3
value 0.03465
scoring_system epss
scoring_elements 0.8755
published_at 2026-04-16T12:55:00Z
4
value 0.03465
scoring_system epss
scoring_elements 0.87551
published_at 2026-04-18T12:55:00Z
5
value 0.03465
scoring_system epss
scoring_elements 0.87549
published_at 2026-04-21T12:55:00Z
6
value 0.03465
scoring_system epss
scoring_elements 0.8748
published_at 2026-04-01T12:55:00Z
7
value 0.03465
scoring_system epss
scoring_elements 0.8749
published_at 2026-04-02T12:55:00Z
8
value 0.03465
scoring_system epss
scoring_elements 0.87504
published_at 2026-04-04T12:55:00Z
9
value 0.03465
scoring_system epss
scoring_elements 0.87506
published_at 2026-04-07T12:55:00Z
10
value 0.03465
scoring_system epss
scoring_elements 0.87525
published_at 2026-04-08T12:55:00Z
11
value 0.03465
scoring_system epss
scoring_elements 0.87532
published_at 2026-04-09T12:55:00Z
12
value 0.03465
scoring_system epss
scoring_elements 0.87544
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17016
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17016
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17017
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17022
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17024
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1788723
reference_id 1788723
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1788723
8
reference_url https://security.archlinux.org/ASA-202001-1
reference_id ASA-202001-1
reference_type
scores
url https://security.archlinux.org/ASA-202001-1
9
reference_url https://security.archlinux.org/ASA-202001-4
reference_id ASA-202001-4
reference_type
scores
url https://security.archlinux.org/ASA-202001-4
10
reference_url https://security.archlinux.org/AVG-1084
reference_id AVG-1084
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1084
11
reference_url https://security.archlinux.org/AVG-1086
reference_id AVG-1086
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1086
12
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
reference_id mfsa2020-01
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-01
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
reference_id mfsa2020-02
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-02
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
reference_id mfsa2020-04
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-04
16
reference_url https://access.redhat.com/errata/RHSA-2020:0085
reference_id RHSA-2020:0085
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0085
17
reference_url https://access.redhat.com/errata/RHSA-2020:0086
reference_id RHSA-2020:0086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0086
18
reference_url https://access.redhat.com/errata/RHSA-2020:0111
reference_id RHSA-2020:0111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0111
19
reference_url https://access.redhat.com/errata/RHSA-2020:0120
reference_id RHSA-2020:0120
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0120
20
reference_url https://access.redhat.com/errata/RHSA-2020:0123
reference_id RHSA-2020:0123
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0123
21
reference_url https://access.redhat.com/errata/RHSA-2020:0127
reference_id RHSA-2020:0127
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0127
22
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
23
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
24
reference_url https://usn.ubuntu.com/4234-1/
reference_id USN-4234-1
reference_type
scores
url https://usn.ubuntu.com/4234-1/
25
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
26
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@72.0-1
purl pkg:alpm/archlinux/firefox@72.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zbpq-qcww-6yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@72.0-1
aliases CVE-2019-17016
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x12h-hqf2-37cc
Fixing_vulnerabilities
0
url VCID-3smq-ax5u-ryd3
vulnerability_id VCID-3smq-ax5u-ryd3
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17012
reference_id
reference_type
scores
0
value 0.02152
scoring_system epss
scoring_elements 0.84304
published_at 2026-04-24T12:55:00Z
1
value 0.02152
scoring_system epss
scoring_elements 0.84261
published_at 2026-04-11T12:55:00Z
2
value 0.02152
scoring_system epss
scoring_elements 0.84256
published_at 2026-04-12T12:55:00Z
3
value 0.02152
scoring_system epss
scoring_elements 0.84253
published_at 2026-04-13T12:55:00Z
4
value 0.02152
scoring_system epss
scoring_elements 0.84275
published_at 2026-04-16T12:55:00Z
5
value 0.02152
scoring_system epss
scoring_elements 0.84276
published_at 2026-04-18T12:55:00Z
6
value 0.02152
scoring_system epss
scoring_elements 0.8428
published_at 2026-04-21T12:55:00Z
7
value 0.02152
scoring_system epss
scoring_elements 0.84183
published_at 2026-04-01T12:55:00Z
8
value 0.02152
scoring_system epss
scoring_elements 0.84196
published_at 2026-04-02T12:55:00Z
9
value 0.02152
scoring_system epss
scoring_elements 0.84214
published_at 2026-04-04T12:55:00Z
10
value 0.02152
scoring_system epss
scoring_elements 0.84215
published_at 2026-04-07T12:55:00Z
11
value 0.02152
scoring_system epss
scoring_elements 0.84237
published_at 2026-04-08T12:55:00Z
12
value 0.02152
scoring_system epss
scoring_elements 0.84243
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17012
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779437
reference_id 1779437
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779437
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17012
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3smq-ax5u-ryd3
1
url VCID-4sv2-j8zg-xkhf
vulnerability_id VCID-4sv2-j8zg-xkhf
summary When running, the updater service wrote status and log files to an unrestricted location; potentially allowing an unprivileged process to locate and exploit a vulnerability in file handling in the updater service. *Note: This attack requires local system access and only affects Windows. Other operating systems are not affected.*
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17009
reference_id
reference_type
scores
0
value 0.00144
scoring_system epss
scoring_elements 0.34455
published_at 2026-04-24T12:55:00Z
1
value 0.00144
scoring_system epss
scoring_elements 0.34731
published_at 2026-04-12T12:55:00Z
2
value 0.00144
scoring_system epss
scoring_elements 0.34708
published_at 2026-04-13T12:55:00Z
3
value 0.00144
scoring_system epss
scoring_elements 0.34742
published_at 2026-04-16T12:55:00Z
4
value 0.00144
scoring_system epss
scoring_elements 0.34727
published_at 2026-04-18T12:55:00Z
5
value 0.00144
scoring_system epss
scoring_elements 0.34687
published_at 2026-04-21T12:55:00Z
6
value 0.00144
scoring_system epss
scoring_elements 0.34579
published_at 2026-04-01T12:55:00Z
7
value 0.00144
scoring_system epss
scoring_elements 0.34792
published_at 2026-04-02T12:55:00Z
8
value 0.00144
scoring_system epss
scoring_elements 0.34818
published_at 2026-04-04T12:55:00Z
9
value 0.00144
scoring_system epss
scoring_elements 0.34695
published_at 2026-04-07T12:55:00Z
10
value 0.00144
scoring_system epss
scoring_elements 0.34738
published_at 2026-04-08T12:55:00Z
11
value 0.00144
scoring_system epss
scoring_elements 0.34766
published_at 2026-04-09T12:55:00Z
12
value 0.00144
scoring_system epss
scoring_elements 0.3477
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17009
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779433
reference_id 1779433
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779433
4
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
5
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17009
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4sv2-j8zg-xkhf
2
url VCID-8xkk-qc7d-fqg2
vulnerability_id VCID-8xkk-qc7d-fqg2
summary Mozilla developers and community members Philipp, Diego Calleja, Mikhail Gavrilov, Jason Kratzer, Christian Holler, Markus Stange, Tyson Smith reported memory safety bugs present in Firefox 70. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17013
reference_id
reference_type
scores
0
value 0.00401
scoring_system epss
scoring_elements 0.60649
published_at 2026-04-01T12:55:00Z
1
value 0.00401
scoring_system epss
scoring_elements 0.60792
published_at 2026-04-24T12:55:00Z
2
value 0.00401
scoring_system epss
scoring_elements 0.60813
published_at 2026-04-16T12:55:00Z
3
value 0.00401
scoring_system epss
scoring_elements 0.60819
published_at 2026-04-18T12:55:00Z
4
value 0.00401
scoring_system epss
scoring_elements 0.60723
published_at 2026-04-02T12:55:00Z
5
value 0.00401
scoring_system epss
scoring_elements 0.60753
published_at 2026-04-04T12:55:00Z
6
value 0.00401
scoring_system epss
scoring_elements 0.60718
published_at 2026-04-07T12:55:00Z
7
value 0.00401
scoring_system epss
scoring_elements 0.60767
published_at 2026-04-08T12:55:00Z
8
value 0.00401
scoring_system epss
scoring_elements 0.60782
published_at 2026-04-09T12:55:00Z
9
value 0.00401
scoring_system epss
scoring_elements 0.60804
published_at 2026-04-21T12:55:00Z
10
value 0.00401
scoring_system epss
scoring_elements 0.6079
published_at 2026-04-12T12:55:00Z
11
value 0.00401
scoring_system epss
scoring_elements 0.60771
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17013
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779441
reference_id 1779441
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779441
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
7
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17013
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8xkk-qc7d-fqg2
3
url VCID-ex1b-2rdy-7qhw
vulnerability_id VCID-ex1b-2rdy-7qhw
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17005
reference_id
reference_type
scores
0
value 0.02867
scoring_system epss
scoring_elements 0.86293
published_at 2026-04-24T12:55:00Z
1
value 0.02867
scoring_system epss
scoring_elements 0.86267
published_at 2026-04-11T12:55:00Z
2
value 0.02867
scoring_system epss
scoring_elements 0.86264
published_at 2026-04-12T12:55:00Z
3
value 0.02867
scoring_system epss
scoring_elements 0.8626
published_at 2026-04-13T12:55:00Z
4
value 0.02867
scoring_system epss
scoring_elements 0.86276
published_at 2026-04-16T12:55:00Z
5
value 0.02867
scoring_system epss
scoring_elements 0.86281
published_at 2026-04-18T12:55:00Z
6
value 0.02867
scoring_system epss
scoring_elements 0.86274
published_at 2026-04-21T12:55:00Z
7
value 0.02867
scoring_system epss
scoring_elements 0.86199
published_at 2026-04-01T12:55:00Z
8
value 0.02867
scoring_system epss
scoring_elements 0.86209
published_at 2026-04-02T12:55:00Z
9
value 0.02867
scoring_system epss
scoring_elements 0.86222
published_at 2026-04-04T12:55:00Z
10
value 0.02867
scoring_system epss
scoring_elements 0.86223
published_at 2026-04-07T12:55:00Z
11
value 0.02867
scoring_system epss
scoring_elements 0.86241
published_at 2026-04-08T12:55:00Z
12
value 0.02867
scoring_system epss
scoring_elements 0.86253
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17005
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779435
reference_id 1779435
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779435
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17005
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ex1b-2rdy-7qhw
4
url VCID-ftfg-b795-qyan
vulnerability_id VCID-ftfg-b795-qyan
summary If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17014
reference_id
reference_type
scores
0
value 0.00344
scoring_system epss
scoring_elements 0.5689
published_at 2026-04-01T12:55:00Z
1
value 0.00344
scoring_system epss
scoring_elements 0.57028
published_at 2026-04-12T12:55:00Z
2
value 0.00344
scoring_system epss
scoring_elements 0.56987
published_at 2026-04-02T12:55:00Z
3
value 0.00344
scoring_system epss
scoring_elements 0.57009
published_at 2026-04-04T12:55:00Z
4
value 0.00344
scoring_system epss
scoring_elements 0.56985
published_at 2026-04-07T12:55:00Z
5
value 0.00344
scoring_system epss
scoring_elements 0.57036
published_at 2026-04-08T12:55:00Z
6
value 0.00344
scoring_system epss
scoring_elements 0.57049
published_at 2026-04-11T12:55:00Z
7
value 0.00344
scoring_system epss
scoring_elements 0.57038
published_at 2026-04-09T12:55:00Z
8
value 0.00367
scoring_system epss
scoring_elements 0.58648
published_at 2026-04-24T12:55:00Z
9
value 0.00367
scoring_system epss
scoring_elements 0.58702
published_at 2026-04-18T12:55:00Z
10
value 0.00367
scoring_system epss
scoring_elements 0.58679
published_at 2026-04-21T12:55:00Z
11
value 0.00367
scoring_system epss
scoring_elements 0.58665
published_at 2026-04-13T12:55:00Z
12
value 0.00367
scoring_system epss
scoring_elements 0.58698
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17014
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779440
reference_id 1779440
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779440
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
7
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17014
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ftfg-b795-qyan
5
url VCID-n6s1-tsx2-7fee
vulnerability_id VCID-n6s1-tsx2-7fee
summary Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service).
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11756
reference_id
reference_type
scores
0
value 0.00256
scoring_system epss
scoring_elements 0.48895
published_at 2026-04-01T12:55:00Z
1
value 0.00256
scoring_system epss
scoring_elements 0.48954
published_at 2026-04-24T12:55:00Z
2
value 0.00256
scoring_system epss
scoring_elements 0.49008
published_at 2026-04-16T12:55:00Z
3
value 0.00256
scoring_system epss
scoring_elements 0.49004
published_at 2026-04-18T12:55:00Z
4
value 0.00256
scoring_system epss
scoring_elements 0.48932
published_at 2026-04-02T12:55:00Z
5
value 0.00256
scoring_system epss
scoring_elements 0.48958
published_at 2026-04-04T12:55:00Z
6
value 0.00256
scoring_system epss
scoring_elements 0.48912
published_at 2026-04-07T12:55:00Z
7
value 0.00256
scoring_system epss
scoring_elements 0.48966
published_at 2026-04-21T12:55:00Z
8
value 0.00256
scoring_system epss
scoring_elements 0.48963
published_at 2026-04-09T12:55:00Z
9
value 0.00256
scoring_system epss
scoring_elements 0.4898
published_at 2026-04-11T12:55:00Z
10
value 0.00256
scoring_system epss
scoring_elements 0.48955
published_at 2026-04-12T12:55:00Z
11
value 0.00256
scoring_system epss
scoring_elements 0.48962
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11756
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1774835
reference_id 1774835
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1774835
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://access.redhat.com/errata/RHSA-2020:3280
reference_id RHSA-2020:3280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3280
7
reference_url https://access.redhat.com/errata/RHSA-2020:4076
reference_id RHSA-2020:4076
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4076
8
reference_url https://access.redhat.com/errata/RHSA-2021:0758
reference_id RHSA-2021:0758
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0758
9
reference_url https://access.redhat.com/errata/RHSA-2021:0876
reference_id RHSA-2021:0876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0876
10
reference_url https://access.redhat.com/errata/RHSA-2021:0949
reference_id RHSA-2021:0949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0949
11
reference_url https://access.redhat.com/errata/RHSA-2021:1026
reference_id RHSA-2021:1026
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1026
12
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
13
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-11756
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n6s1-tsx2-7fee
6
url VCID-pws7-8qmm-hfes
vulnerability_id VCID-pws7-8qmm-hfes
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17008
reference_id
reference_type
scores
0
value 0.00854
scoring_system epss
scoring_elements 0.75009
published_at 2026-04-24T12:55:00Z
1
value 0.00854
scoring_system epss
scoring_elements 0.74968
published_at 2026-04-11T12:55:00Z
2
value 0.00854
scoring_system epss
scoring_elements 0.74946
published_at 2026-04-12T12:55:00Z
3
value 0.00854
scoring_system epss
scoring_elements 0.74936
published_at 2026-04-13T12:55:00Z
4
value 0.00854
scoring_system epss
scoring_elements 0.74973
published_at 2026-04-16T12:55:00Z
5
value 0.00854
scoring_system epss
scoring_elements 0.7498
published_at 2026-04-18T12:55:00Z
6
value 0.00854
scoring_system epss
scoring_elements 0.74972
published_at 2026-04-21T12:55:00Z
7
value 0.00854
scoring_system epss
scoring_elements 0.74896
published_at 2026-04-01T12:55:00Z
8
value 0.00854
scoring_system epss
scoring_elements 0.74897
published_at 2026-04-02T12:55:00Z
9
value 0.00854
scoring_system epss
scoring_elements 0.74925
published_at 2026-04-04T12:55:00Z
10
value 0.00854
scoring_system epss
scoring_elements 0.74899
published_at 2026-04-07T12:55:00Z
11
value 0.00854
scoring_system epss
scoring_elements 0.74933
published_at 2026-04-08T12:55:00Z
12
value 0.00854
scoring_system epss
scoring_elements 0.74945
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17008
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779431
reference_id 1779431
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779431
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17008
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pws7-8qmm-hfes
7
url VCID-vzb9-aeqz-hybr
vulnerability_id VCID-vzb9-aeqz-hybr
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11745
reference_id
reference_type
scores
0
value 0.00806
scoring_system epss
scoring_elements 0.74221
published_at 2026-04-24T12:55:00Z
1
value 0.00806
scoring_system epss
scoring_elements 0.74174
published_at 2026-04-11T12:55:00Z
2
value 0.00806
scoring_system epss
scoring_elements 0.74155
published_at 2026-04-12T12:55:00Z
3
value 0.00806
scoring_system epss
scoring_elements 0.74149
published_at 2026-04-13T12:55:00Z
4
value 0.00806
scoring_system epss
scoring_elements 0.74186
published_at 2026-04-16T12:55:00Z
5
value 0.00806
scoring_system epss
scoring_elements 0.74195
published_at 2026-04-18T12:55:00Z
6
value 0.00806
scoring_system epss
scoring_elements 0.74187
published_at 2026-04-21T12:55:00Z
7
value 0.00806
scoring_system epss
scoring_elements 0.74101
published_at 2026-04-01T12:55:00Z
8
value 0.00806
scoring_system epss
scoring_elements 0.74107
published_at 2026-04-02T12:55:00Z
9
value 0.00806
scoring_system epss
scoring_elements 0.74133
published_at 2026-04-04T12:55:00Z
10
value 0.00806
scoring_system epss
scoring_elements 0.74105
published_at 2026-04-07T12:55:00Z
11
value 0.00806
scoring_system epss
scoring_elements 0.74137
published_at 2026-04-08T12:55:00Z
12
value 0.00806
scoring_system epss
scoring_elements 0.74152
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11745
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1774831
reference_id 1774831
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1774831
6
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
7
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
8
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
9
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
10
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
11
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
12
reference_url https://security.gentoo.org/glsa/202003-37
reference_id GLSA-202003-37
reference_type
scores
url https://security.gentoo.org/glsa/202003-37
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
16
reference_url https://access.redhat.com/errata/RHSA-2019:4114
reference_id RHSA-2019:4114
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4114
17
reference_url https://access.redhat.com/errata/RHSA-2019:4152
reference_id RHSA-2019:4152
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4152
18
reference_url https://access.redhat.com/errata/RHSA-2019:4190
reference_id RHSA-2019:4190
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4190
19
reference_url https://access.redhat.com/errata/RHSA-2020:0243
reference_id RHSA-2020:0243
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0243
20
reference_url https://access.redhat.com/errata/RHSA-2020:0466
reference_id RHSA-2020:0466
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0466
21
reference_url https://access.redhat.com/errata/RHSA-2020:1267
reference_id RHSA-2020:1267
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1267
22
reference_url https://access.redhat.com/errata/RHSA-2020:1345
reference_id RHSA-2020:1345
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1345
23
reference_url https://access.redhat.com/errata/RHSA-2020:1461
reference_id RHSA-2020:1461
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1461
24
reference_url https://usn.ubuntu.com/4203-1/
reference_id USN-4203-1
reference_type
scores
url https://usn.ubuntu.com/4203-1/
25
reference_url https://usn.ubuntu.com/4203-2/
reference_id USN-4203-2
reference_type
scores
url https://usn.ubuntu.com/4203-2/
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-11745
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vzb9-aeqz-hybr
8
url VCID-zh2m-qyw5-dkgn
vulnerability_id VCID-zh2m-qyw5-dkgn
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17011
reference_id
reference_type
scores
0
value 0.01329
scoring_system epss
scoring_elements 0.79998
published_at 2026-04-24T12:55:00Z
1
value 0.01329
scoring_system epss
scoring_elements 0.79943
published_at 2026-04-09T12:55:00Z
2
value 0.01329
scoring_system epss
scoring_elements 0.79963
published_at 2026-04-11T12:55:00Z
3
value 0.01329
scoring_system epss
scoring_elements 0.79947
published_at 2026-04-12T12:55:00Z
4
value 0.01329
scoring_system epss
scoring_elements 0.79939
published_at 2026-04-13T12:55:00Z
5
value 0.01329
scoring_system epss
scoring_elements 0.79967
published_at 2026-04-18T12:55:00Z
6
value 0.01329
scoring_system epss
scoring_elements 0.7997
published_at 2026-04-21T12:55:00Z
7
value 0.01329
scoring_system epss
scoring_elements 0.79891
published_at 2026-04-01T12:55:00Z
8
value 0.01329
scoring_system epss
scoring_elements 0.79898
published_at 2026-04-02T12:55:00Z
9
value 0.01329
scoring_system epss
scoring_elements 0.79919
published_at 2026-04-04T12:55:00Z
10
value 0.01329
scoring_system epss
scoring_elements 0.79907
published_at 2026-04-07T12:55:00Z
11
value 0.01329
scoring_system epss
scoring_elements 0.79935
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17011
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779436
reference_id 1779436
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779436
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17011
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zh2m-qyw5-dkgn
9
url VCID-zstj-sux9-ubdd
vulnerability_id VCID-zstj-sux9-ubdd
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17010
reference_id
reference_type
scores
0
value 0.01329
scoring_system epss
scoring_elements 0.79998
published_at 2026-04-24T12:55:00Z
1
value 0.01329
scoring_system epss
scoring_elements 0.79943
published_at 2026-04-09T12:55:00Z
2
value 0.01329
scoring_system epss
scoring_elements 0.79963
published_at 2026-04-11T12:55:00Z
3
value 0.01329
scoring_system epss
scoring_elements 0.79947
published_at 2026-04-12T12:55:00Z
4
value 0.01329
scoring_system epss
scoring_elements 0.79939
published_at 2026-04-13T12:55:00Z
5
value 0.01329
scoring_system epss
scoring_elements 0.79967
published_at 2026-04-18T12:55:00Z
6
value 0.01329
scoring_system epss
scoring_elements 0.7997
published_at 2026-04-21T12:55:00Z
7
value 0.01329
scoring_system epss
scoring_elements 0.79891
published_at 2026-04-01T12:55:00Z
8
value 0.01329
scoring_system epss
scoring_elements 0.79898
published_at 2026-04-02T12:55:00Z
9
value 0.01329
scoring_system epss
scoring_elements 0.79919
published_at 2026-04-04T12:55:00Z
10
value 0.01329
scoring_system epss
scoring_elements 0.79907
published_at 2026-04-07T12:55:00Z
11
value 0.01329
scoring_system epss
scoring_elements 0.79935
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17010
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779434
reference_id 1779434
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779434
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17010
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zstj-sux9-ubdd
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1