Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/firefox@70.0.1-3
Typealpm
Namespacearchlinux
Namefirefox
Version70.0.1-3
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version72.0.1-1
Latest_non_vulnerable_version101.0-1
Affected_by_vulnerabilities
0
url VCID-3smq-ax5u-ryd3
vulnerability_id VCID-3smq-ax5u-ryd3
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17012.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17012
reference_id
reference_type
scores
0
value 0.02152
scoring_system epss
scoring_elements 0.8428
published_at 2026-04-21T12:55:00Z
1
value 0.02152
scoring_system epss
scoring_elements 0.84243
published_at 2026-04-09T12:55:00Z
2
value 0.02152
scoring_system epss
scoring_elements 0.84261
published_at 2026-04-11T12:55:00Z
3
value 0.02152
scoring_system epss
scoring_elements 0.84256
published_at 2026-04-12T12:55:00Z
4
value 0.02152
scoring_system epss
scoring_elements 0.84253
published_at 2026-04-13T12:55:00Z
5
value 0.02152
scoring_system epss
scoring_elements 0.84275
published_at 2026-04-16T12:55:00Z
6
value 0.02152
scoring_system epss
scoring_elements 0.84276
published_at 2026-04-18T12:55:00Z
7
value 0.02152
scoring_system epss
scoring_elements 0.84183
published_at 2026-04-01T12:55:00Z
8
value 0.02152
scoring_system epss
scoring_elements 0.84196
published_at 2026-04-02T12:55:00Z
9
value 0.02152
scoring_system epss
scoring_elements 0.84214
published_at 2026-04-04T12:55:00Z
10
value 0.02152
scoring_system epss
scoring_elements 0.84215
published_at 2026-04-07T12:55:00Z
11
value 0.02152
scoring_system epss
scoring_elements 0.84237
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17012
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779437
reference_id 1779437
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779437
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17012
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3smq-ax5u-ryd3
1
url VCID-4sv2-j8zg-xkhf
vulnerability_id VCID-4sv2-j8zg-xkhf
summary When running, the updater service wrote status and log files to an unrestricted location; potentially allowing an unprivileged process to locate and exploit a vulnerability in file handling in the updater service. *Note: This attack requires local system access and only affects Windows. Other operating systems are not affected.*
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17009.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17009
reference_id
reference_type
scores
0
value 0.00144
scoring_system epss
scoring_elements 0.34687
published_at 2026-04-21T12:55:00Z
1
value 0.00144
scoring_system epss
scoring_elements 0.3477
published_at 2026-04-11T12:55:00Z
2
value 0.00144
scoring_system epss
scoring_elements 0.34731
published_at 2026-04-12T12:55:00Z
3
value 0.00144
scoring_system epss
scoring_elements 0.34708
published_at 2026-04-13T12:55:00Z
4
value 0.00144
scoring_system epss
scoring_elements 0.34742
published_at 2026-04-16T12:55:00Z
5
value 0.00144
scoring_system epss
scoring_elements 0.34727
published_at 2026-04-18T12:55:00Z
6
value 0.00144
scoring_system epss
scoring_elements 0.34579
published_at 2026-04-01T12:55:00Z
7
value 0.00144
scoring_system epss
scoring_elements 0.34792
published_at 2026-04-02T12:55:00Z
8
value 0.00144
scoring_system epss
scoring_elements 0.34818
published_at 2026-04-04T12:55:00Z
9
value 0.00144
scoring_system epss
scoring_elements 0.34695
published_at 2026-04-07T12:55:00Z
10
value 0.00144
scoring_system epss
scoring_elements 0.34738
published_at 2026-04-08T12:55:00Z
11
value 0.00144
scoring_system epss
scoring_elements 0.34766
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17009
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779433
reference_id 1779433
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779433
4
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
5
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17009
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4sv2-j8zg-xkhf
2
url VCID-8xkk-qc7d-fqg2
vulnerability_id VCID-8xkk-qc7d-fqg2
summary Mozilla developers and community members Philipp, Diego Calleja, Mikhail Gavrilov, Jason Kratzer, Christian Holler, Markus Stange, Tyson Smith reported memory safety bugs present in Firefox 70. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17013.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17013
reference_id
reference_type
scores
0
value 0.00401
scoring_system epss
scoring_elements 0.60649
published_at 2026-04-01T12:55:00Z
1
value 0.00401
scoring_system epss
scoring_elements 0.60819
published_at 2026-04-18T12:55:00Z
2
value 0.00401
scoring_system epss
scoring_elements 0.60771
published_at 2026-04-13T12:55:00Z
3
value 0.00401
scoring_system epss
scoring_elements 0.60813
published_at 2026-04-16T12:55:00Z
4
value 0.00401
scoring_system epss
scoring_elements 0.60723
published_at 2026-04-02T12:55:00Z
5
value 0.00401
scoring_system epss
scoring_elements 0.60753
published_at 2026-04-04T12:55:00Z
6
value 0.00401
scoring_system epss
scoring_elements 0.60718
published_at 2026-04-07T12:55:00Z
7
value 0.00401
scoring_system epss
scoring_elements 0.60767
published_at 2026-04-08T12:55:00Z
8
value 0.00401
scoring_system epss
scoring_elements 0.60782
published_at 2026-04-09T12:55:00Z
9
value 0.00401
scoring_system epss
scoring_elements 0.60804
published_at 2026-04-21T12:55:00Z
10
value 0.00401
scoring_system epss
scoring_elements 0.6079
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17013
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779441
reference_id 1779441
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779441
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
7
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17013
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8xkk-qc7d-fqg2
3
url VCID-ex1b-2rdy-7qhw
vulnerability_id VCID-ex1b-2rdy-7qhw
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17005.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17005
reference_id
reference_type
scores
0
value 0.02867
scoring_system epss
scoring_elements 0.86274
published_at 2026-04-21T12:55:00Z
1
value 0.02867
scoring_system epss
scoring_elements 0.86253
published_at 2026-04-09T12:55:00Z
2
value 0.02867
scoring_system epss
scoring_elements 0.86267
published_at 2026-04-11T12:55:00Z
3
value 0.02867
scoring_system epss
scoring_elements 0.86264
published_at 2026-04-12T12:55:00Z
4
value 0.02867
scoring_system epss
scoring_elements 0.8626
published_at 2026-04-13T12:55:00Z
5
value 0.02867
scoring_system epss
scoring_elements 0.86276
published_at 2026-04-16T12:55:00Z
6
value 0.02867
scoring_system epss
scoring_elements 0.86281
published_at 2026-04-18T12:55:00Z
7
value 0.02867
scoring_system epss
scoring_elements 0.86199
published_at 2026-04-01T12:55:00Z
8
value 0.02867
scoring_system epss
scoring_elements 0.86209
published_at 2026-04-02T12:55:00Z
9
value 0.02867
scoring_system epss
scoring_elements 0.86222
published_at 2026-04-04T12:55:00Z
10
value 0.02867
scoring_system epss
scoring_elements 0.86223
published_at 2026-04-07T12:55:00Z
11
value 0.02867
scoring_system epss
scoring_elements 0.86241
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17005
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779435
reference_id 1779435
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779435
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17005
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ex1b-2rdy-7qhw
4
url VCID-ftfg-b795-qyan
vulnerability_id VCID-ftfg-b795-qyan
summary If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17014.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17014
reference_id
reference_type
scores
0
value 0.00344
scoring_system epss
scoring_elements 0.5689
published_at 2026-04-01T12:55:00Z
1
value 0.00344
scoring_system epss
scoring_elements 0.57028
published_at 2026-04-12T12:55:00Z
2
value 0.00344
scoring_system epss
scoring_elements 0.56987
published_at 2026-04-02T12:55:00Z
3
value 0.00344
scoring_system epss
scoring_elements 0.57009
published_at 2026-04-04T12:55:00Z
4
value 0.00344
scoring_system epss
scoring_elements 0.56985
published_at 2026-04-07T12:55:00Z
5
value 0.00344
scoring_system epss
scoring_elements 0.57036
published_at 2026-04-08T12:55:00Z
6
value 0.00344
scoring_system epss
scoring_elements 0.57049
published_at 2026-04-11T12:55:00Z
7
value 0.00344
scoring_system epss
scoring_elements 0.57038
published_at 2026-04-09T12:55:00Z
8
value 0.00367
scoring_system epss
scoring_elements 0.58679
published_at 2026-04-21T12:55:00Z
9
value 0.00367
scoring_system epss
scoring_elements 0.58698
published_at 2026-04-16T12:55:00Z
10
value 0.00367
scoring_system epss
scoring_elements 0.58702
published_at 2026-04-18T12:55:00Z
11
value 0.00367
scoring_system epss
scoring_elements 0.58665
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17014
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779440
reference_id 1779440
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779440
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
7
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17014
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ftfg-b795-qyan
5
url VCID-n6s1-tsx2-7fee
vulnerability_id VCID-n6s1-tsx2-7fee
summary Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service).
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11756.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11756
reference_id
reference_type
scores
0
value 0.00256
scoring_system epss
scoring_elements 0.48895
published_at 2026-04-01T12:55:00Z
1
value 0.00256
scoring_system epss
scoring_elements 0.49004
published_at 2026-04-18T12:55:00Z
2
value 0.00256
scoring_system epss
scoring_elements 0.48962
published_at 2026-04-13T12:55:00Z
3
value 0.00256
scoring_system epss
scoring_elements 0.49008
published_at 2026-04-16T12:55:00Z
4
value 0.00256
scoring_system epss
scoring_elements 0.48932
published_at 2026-04-02T12:55:00Z
5
value 0.00256
scoring_system epss
scoring_elements 0.48958
published_at 2026-04-04T12:55:00Z
6
value 0.00256
scoring_system epss
scoring_elements 0.48912
published_at 2026-04-07T12:55:00Z
7
value 0.00256
scoring_system epss
scoring_elements 0.48966
published_at 2026-04-21T12:55:00Z
8
value 0.00256
scoring_system epss
scoring_elements 0.48963
published_at 2026-04-09T12:55:00Z
9
value 0.00256
scoring_system epss
scoring_elements 0.4898
published_at 2026-04-11T12:55:00Z
10
value 0.00256
scoring_system epss
scoring_elements 0.48955
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11756
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1774835
reference_id 1774835
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1774835
3
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
4
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
6
reference_url https://access.redhat.com/errata/RHSA-2020:3280
reference_id RHSA-2020:3280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3280
7
reference_url https://access.redhat.com/errata/RHSA-2020:4076
reference_id RHSA-2020:4076
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4076
8
reference_url https://access.redhat.com/errata/RHSA-2021:0758
reference_id RHSA-2021:0758
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0758
9
reference_url https://access.redhat.com/errata/RHSA-2021:0876
reference_id RHSA-2021:0876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0876
10
reference_url https://access.redhat.com/errata/RHSA-2021:0949
reference_id RHSA-2021:0949
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0949
11
reference_url https://access.redhat.com/errata/RHSA-2021:1026
reference_id RHSA-2021:1026
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1026
12
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
13
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-11756
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n6s1-tsx2-7fee
6
url VCID-pws7-8qmm-hfes
vulnerability_id VCID-pws7-8qmm-hfes
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17008.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17008
reference_id
reference_type
scores
0
value 0.00854
scoring_system epss
scoring_elements 0.74972
published_at 2026-04-21T12:55:00Z
1
value 0.00854
scoring_system epss
scoring_elements 0.74945
published_at 2026-04-09T12:55:00Z
2
value 0.00854
scoring_system epss
scoring_elements 0.74968
published_at 2026-04-11T12:55:00Z
3
value 0.00854
scoring_system epss
scoring_elements 0.74946
published_at 2026-04-12T12:55:00Z
4
value 0.00854
scoring_system epss
scoring_elements 0.74936
published_at 2026-04-13T12:55:00Z
5
value 0.00854
scoring_system epss
scoring_elements 0.74973
published_at 2026-04-16T12:55:00Z
6
value 0.00854
scoring_system epss
scoring_elements 0.7498
published_at 2026-04-18T12:55:00Z
7
value 0.00854
scoring_system epss
scoring_elements 0.74896
published_at 2026-04-01T12:55:00Z
8
value 0.00854
scoring_system epss
scoring_elements 0.74897
published_at 2026-04-02T12:55:00Z
9
value 0.00854
scoring_system epss
scoring_elements 0.74925
published_at 2026-04-04T12:55:00Z
10
value 0.00854
scoring_system epss
scoring_elements 0.74899
published_at 2026-04-07T12:55:00Z
11
value 0.00854
scoring_system epss
scoring_elements 0.74933
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17008
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779431
reference_id 1779431
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779431
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17008
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pws7-8qmm-hfes
7
url VCID-vzb9-aeqz-hybr
vulnerability_id VCID-vzb9-aeqz-hybr
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11745.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11745
reference_id
reference_type
scores
0
value 0.00806
scoring_system epss
scoring_elements 0.74187
published_at 2026-04-21T12:55:00Z
1
value 0.00806
scoring_system epss
scoring_elements 0.74152
published_at 2026-04-09T12:55:00Z
2
value 0.00806
scoring_system epss
scoring_elements 0.74174
published_at 2026-04-11T12:55:00Z
3
value 0.00806
scoring_system epss
scoring_elements 0.74155
published_at 2026-04-12T12:55:00Z
4
value 0.00806
scoring_system epss
scoring_elements 0.74149
published_at 2026-04-13T12:55:00Z
5
value 0.00806
scoring_system epss
scoring_elements 0.74186
published_at 2026-04-16T12:55:00Z
6
value 0.00806
scoring_system epss
scoring_elements 0.74195
published_at 2026-04-18T12:55:00Z
7
value 0.00806
scoring_system epss
scoring_elements 0.74101
published_at 2026-04-01T12:55:00Z
8
value 0.00806
scoring_system epss
scoring_elements 0.74107
published_at 2026-04-02T12:55:00Z
9
value 0.00806
scoring_system epss
scoring_elements 0.74133
published_at 2026-04-04T12:55:00Z
10
value 0.00806
scoring_system epss
scoring_elements 0.74105
published_at 2026-04-07T12:55:00Z
11
value 0.00806
scoring_system epss
scoring_elements 0.74137
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11745
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17007
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1774831
reference_id 1774831
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1774831
6
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
7
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
8
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
9
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
10
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
11
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
12
reference_url https://security.gentoo.org/glsa/202003-37
reference_id GLSA-202003-37
reference_type
scores
url https://security.gentoo.org/glsa/202003-37
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
16
reference_url https://access.redhat.com/errata/RHSA-2019:4114
reference_id RHSA-2019:4114
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4114
17
reference_url https://access.redhat.com/errata/RHSA-2019:4152
reference_id RHSA-2019:4152
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4152
18
reference_url https://access.redhat.com/errata/RHSA-2019:4190
reference_id RHSA-2019:4190
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4190
19
reference_url https://access.redhat.com/errata/RHSA-2020:0243
reference_id RHSA-2020:0243
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0243
20
reference_url https://access.redhat.com/errata/RHSA-2020:0466
reference_id RHSA-2020:0466
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0466
21
reference_url https://access.redhat.com/errata/RHSA-2020:1267
reference_id RHSA-2020:1267
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1267
22
reference_url https://access.redhat.com/errata/RHSA-2020:1345
reference_id RHSA-2020:1345
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1345
23
reference_url https://access.redhat.com/errata/RHSA-2020:1461
reference_id RHSA-2020:1461
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1461
24
reference_url https://usn.ubuntu.com/4203-1/
reference_id USN-4203-1
reference_type
scores
url https://usn.ubuntu.com/4203-1/
25
reference_url https://usn.ubuntu.com/4203-2/
reference_id USN-4203-2
reference_type
scores
url https://usn.ubuntu.com/4203-2/
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-11745
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vzb9-aeqz-hybr
8
url VCID-zh2m-qyw5-dkgn
vulnerability_id VCID-zh2m-qyw5-dkgn
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17011.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17011
reference_id
reference_type
scores
0
value 0.01329
scoring_system epss
scoring_elements 0.7997
published_at 2026-04-21T12:55:00Z
1
value 0.01329
scoring_system epss
scoring_elements 0.79935
published_at 2026-04-08T12:55:00Z
2
value 0.01329
scoring_system epss
scoring_elements 0.79943
published_at 2026-04-09T12:55:00Z
3
value 0.01329
scoring_system epss
scoring_elements 0.79963
published_at 2026-04-11T12:55:00Z
4
value 0.01329
scoring_system epss
scoring_elements 0.79947
published_at 2026-04-12T12:55:00Z
5
value 0.01329
scoring_system epss
scoring_elements 0.79939
published_at 2026-04-13T12:55:00Z
6
value 0.01329
scoring_system epss
scoring_elements 0.79967
published_at 2026-04-18T12:55:00Z
7
value 0.01329
scoring_system epss
scoring_elements 0.79891
published_at 2026-04-01T12:55:00Z
8
value 0.01329
scoring_system epss
scoring_elements 0.79898
published_at 2026-04-02T12:55:00Z
9
value 0.01329
scoring_system epss
scoring_elements 0.79919
published_at 2026-04-04T12:55:00Z
10
value 0.01329
scoring_system epss
scoring_elements 0.79907
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17011
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779436
reference_id 1779436
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779436
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17011
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zh2m-qyw5-dkgn
9
url VCID-zstj-sux9-ubdd
vulnerability_id VCID-zstj-sux9-ubdd
summary 
Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-17010.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-17010
reference_id
reference_type
scores
0
value 0.01329
scoring_system epss
scoring_elements 0.7997
published_at 2026-04-21T12:55:00Z
1
value 0.01329
scoring_system epss
scoring_elements 0.79935
published_at 2026-04-08T12:55:00Z
2
value 0.01329
scoring_system epss
scoring_elements 0.79943
published_at 2026-04-09T12:55:00Z
3
value 0.01329
scoring_system epss
scoring_elements 0.79963
published_at 2026-04-11T12:55:00Z
4
value 0.01329
scoring_system epss
scoring_elements 0.79947
published_at 2026-04-12T12:55:00Z
5
value 0.01329
scoring_system epss
scoring_elements 0.79939
published_at 2026-04-13T12:55:00Z
6
value 0.01329
scoring_system epss
scoring_elements 0.79967
published_at 2026-04-18T12:55:00Z
7
value 0.01329
scoring_system epss
scoring_elements 0.79891
published_at 2026-04-01T12:55:00Z
8
value 0.01329
scoring_system epss
scoring_elements 0.79898
published_at 2026-04-02T12:55:00Z
9
value 0.01329
scoring_system epss
scoring_elements 0.79919
published_at 2026-04-04T12:55:00Z
10
value 0.01329
scoring_system epss
scoring_elements 0.79907
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-17010
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17005
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17008
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17010
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17011
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17012
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1779434
reference_id 1779434
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1779434
9
reference_url https://security.archlinux.org/ASA-201912-1
reference_id ASA-201912-1
reference_type
scores
url https://security.archlinux.org/ASA-201912-1
10
reference_url https://security.archlinux.org/ASA-201912-2
reference_id ASA-201912-2
reference_type
scores
url https://security.archlinux.org/ASA-201912-2
11
reference_url https://security.archlinux.org/AVG-1071
reference_id AVG-1071
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1071
12
reference_url https://security.archlinux.org/AVG-1072
reference_id AVG-1072
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1072
13
reference_url https://security.gentoo.org/glsa/202003-02
reference_id GLSA-202003-02
reference_type
scores
url https://security.gentoo.org/glsa/202003-02
14
reference_url https://security.gentoo.org/glsa/202003-10
reference_id GLSA-202003-10
reference_type
scores
url https://security.gentoo.org/glsa/202003-10
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
reference_id mfsa2019-36
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-36
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
reference_id mfsa2019-37
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-37
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
reference_id mfsa2019-38
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-38
18
reference_url https://access.redhat.com/errata/RHSA-2019:4107
reference_id RHSA-2019:4107
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4107
19
reference_url https://access.redhat.com/errata/RHSA-2019:4108
reference_id RHSA-2019:4108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4108
20
reference_url https://access.redhat.com/errata/RHSA-2019:4111
reference_id RHSA-2019:4111
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4111
21
reference_url https://access.redhat.com/errata/RHSA-2019:4148
reference_id RHSA-2019:4148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4148
22
reference_url https://access.redhat.com/errata/RHSA-2019:4195
reference_id RHSA-2019:4195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4195
23
reference_url https://access.redhat.com/errata/RHSA-2019:4205
reference_id RHSA-2019:4205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4205
24
reference_url https://access.redhat.com/errata/RHSA-2020:0292
reference_id RHSA-2020:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0292
25
reference_url https://access.redhat.com/errata/RHSA-2020:0295
reference_id RHSA-2020:0295
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0295
26
reference_url https://usn.ubuntu.com/4216-1/
reference_id USN-4216-1
reference_type
scores
url https://usn.ubuntu.com/4216-1/
27
reference_url https://usn.ubuntu.com/4216-2/
reference_id USN-4216-2
reference_type
scores
url https://usn.ubuntu.com/4216-2/
28
reference_url https://usn.ubuntu.com/4241-1/
reference_id USN-4241-1
reference_type
scores
url https://usn.ubuntu.com/4241-1/
29
reference_url https://usn.ubuntu.com/4335-1/
reference_id USN-4335-1
reference_type
scores
url https://usn.ubuntu.com/4335-1/
fixed_packages
0
url pkg:alpm/archlinux/firefox@71.0-1
purl pkg:alpm/archlinux/firefox@71.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6fvj-phnx-kfgs
1
vulnerability VCID-7hkk-2k6p-vyc7
2
vulnerability VCID-9v4g-hwwe-3ybg
3
vulnerability VCID-ap8s-63rs-jyff
4
vulnerability VCID-c4qs-a9kw-p3hc
5
vulnerability VCID-javq-3r82-73fq
6
vulnerability VCID-x12h-hqf2-37cc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@71.0-1
aliases CVE-2019-17010
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zstj-sux9-ubdd
Fixing_vulnerabilities
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@70.0.1-3