Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/380577?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "type": "apk", "namespace": "alpine", "name": "firefox-esr", "version": "115.5.0-r0", "qualifiers": { "arch": "armv7", "distroversion": "v3.18", "reponame": "community" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "115.6.0-r0", "latest_non_vulnerable_version": "115.17.0-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51421?format=api", "vulnerability_id": "VCID-4f4y-p7h8-dygq", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5728.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5728.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.67021", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.67006", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66962", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.67004", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.67018", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66998", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66986", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66937", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66936", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00525", "scoring_system": "epss", "scoring_elements": "0.66973", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245903", "reference_id": "2245903", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245903" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1852729", "reference_id": "show_bug.cgi?id=1852729", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:34:03Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1852729" }, { "reference_url": "https://usn.ubuntu.com/6456-1/", "reference_id": "USN-6456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6456-1/" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5728" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4f4y-p7h8-dygq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51425?format=api", "vulnerability_id": "VCID-87mf-fznn-m3gy", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6205.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6205.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61664", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61659", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61565", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61564", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61594", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61617", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61637", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61648", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61627", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.61613", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250897", "reference_id": "2250897", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250897" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5561", "reference_id": "dsa-5561", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5561" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-49/", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-49/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-50/", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-50/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-52/", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-52/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00030.html", "reference_id": "msg00030.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00030.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1854076", "reference_id": "show_bug.cgi?id=1854076", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-25T19:19:02Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1854076" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6205" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-87mf-fznn-m3gy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51422?format=api", "vulnerability_id": "VCID-8m89-ma2u-5fgu", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5730.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5730.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.6559", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65578", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65535", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65553", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.655", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65507", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65542", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.6557", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65583", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00489", "scoring_system": "epss", "scoring_elements": "0.65564", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245906", "reference_id": "2245906", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245906" }, { "reference_url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1836607%2C1840918%2C1848694%2C1848833%2C1850191%2C1850259%2C1852596%2C1853201%2C1854002%2C1855306%2C1855640%2C1856695", "reference_id": "buglist.cgi?bug_id=1836607%2C1840918%2C1848694%2C1848833%2C1850191%2C1850259%2C1852596%2C1853201%2C1854002%2C1855306%2C1855640%2C1856695", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1836607%2C1840918%2C1848694%2C1848833%2C1850191%2C1850259%2C1852596%2C1853201%2C1854002%2C1855306%2C1855640%2C1856695" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-11T18:25:19Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://usn.ubuntu.com/6456-1/", "reference_id": "USN-6456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6456-1/" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5730" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8m89-ma2u-5fgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51426?format=api", "vulnerability_id": "VCID-e6bs-vk6j-h3e6", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6206.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6206.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62485", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62458", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62435", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62479", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62387", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62418", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62384", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62432", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62449", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00428", "scoring_system": "epss", "scoring_elements": "0.62468", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250898", "reference_id": "2250898", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250898" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6206" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e6bs-vk6j-h3e6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51424?format=api", "vulnerability_id": "VCID-fwr3-cgq1-a3b4", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6204.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6204.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50096", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50054", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.5005", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50095", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50038", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50067", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50016", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50071", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50064", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00266", "scoring_system": "epss", "scoring_elements": "0.50082", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250896", "reference_id": "2250896", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250896" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6204" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fwr3-cgq1-a3b4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51423?format=api", "vulnerability_id": "VCID-g5z1-9an3-aubs", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5732.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5732.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.55001", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54943", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54992", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54993", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54974", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.54986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00319", "scoring_system": "epss", "scoring_elements": "0.55004", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245898", "reference_id": "2245898", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245898" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-34", "reference_id": "mfsa2023-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-34/", "reference_id": "mfsa2023-34", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-34/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1690979", "reference_id": "show_bug.cgi?id=1690979", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1690979" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1836962", "reference_id": "show_bug.cgi?id=1836962", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:24:34Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1836962" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5732" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g5z1-9an3-aubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51416?format=api", "vulnerability_id": "VCID-mh92-65bz-43ds", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5721.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5721.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54094", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54089", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54012", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54039", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.53988", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.53985", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.5405", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00309", "scoring_system": "epss", "scoring_elements": "0.54086", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245896", "reference_id": "2245896", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245896" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1830820", "reference_id": "show_bug.cgi?id=1830820", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:57:20Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1830820" }, { "reference_url": "https://usn.ubuntu.com/6456-1/", "reference_id": "USN-6456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6456-1/" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5721" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mh92-65bz-43ds" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51417?format=api", "vulnerability_id": "VCID-mj7n-8hf6-2qar", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5724.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5724.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74596", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74588", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7454", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74551", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74559", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74534", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74556", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74508", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74507", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245899", "reference_id": "2245899", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245899" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1836705", "reference_id": "show_bug.cgi?id=1836705", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:56:11Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1836705" }, { "reference_url": "https://usn.ubuntu.com/6456-1/", "reference_id": "USN-6456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6456-1/" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5724" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mj7n-8hf6-2qar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51429?format=api", "vulnerability_id": "VCID-pybb-2ny2-quas", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6209.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6209.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59371", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.5935", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59332", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59365", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59296", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.5932", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59284", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59335", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59348", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00378", "scoring_system": "epss", "scoring_elements": "0.59367", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250901", "reference_id": "2250901", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250901" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6209" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pybb-2ny2-quas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51427?format=api", "vulnerability_id": "VCID-tutg-2zzk-4uam", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6207.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6207.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63915", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63917", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.6387", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63906", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63852", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63879", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63836", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63887", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00456", "scoring_system": "epss", "scoring_elements": "0.63904", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250899", "reference_id": "2250899", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250899" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6207" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tutg-2zzk-4uam" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51428?format=api", "vulnerability_id": "VCID-vma9-r6uy-p7c1", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6208.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6208.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63985", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63972", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63939", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63975", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.6392", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63947", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63956", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63974", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00457", "scoring_system": "epss", "scoring_elements": "0.63986", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250900", "reference_id": "2250900", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250900" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6208" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vma9-r6uy-p7c1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51420?format=api", "vulnerability_id": "VCID-vw4n-4r41-ukbp", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5727.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5727.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5727", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43795", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43804", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43767", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43716", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43758", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43742", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43791", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43771", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5727" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245902", "reference_id": "2245902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245902" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:47:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:47:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:47:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1847180", "reference_id": "show_bug.cgi?id=1847180", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:47:05Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1847180" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5727" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vw4n-4r41-ukbp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51430?format=api", "vulnerability_id": "VCID-yd2q-assr-v3er", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6212.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6212.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.60021", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.60014", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59929", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59924", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59954", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59975", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59994", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.60009", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59988", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00389", "scoring_system": "epss", "scoring_elements": "0.59974", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6212" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6204" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6205" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6208" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6209" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6212" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250902", "reference_id": "2250902", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250902" }, { "reference_url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1658432%2C1820983%2C1829252%2C1856072%2C1856091%2C1859030%2C1860943%2C1862782", "reference_id": "buglist.cgi?bug_id=1658432%2C1820983%2C1829252%2C1856072%2C1856091%2C1859030%2C1860943%2C1862782", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1658432%2C1820983%2C1829252%2C1856072%2C1856091%2C1859030%2C1860943%2C1862782" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5561", "reference_id": "dsa-5561", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5561" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-49" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-49/", "reference_id": "mfsa2023-49", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-49/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-50" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-50/", "reference_id": "mfsa2023-50", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-50/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-52" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-52/", "reference_id": "mfsa2023-52", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-52/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00030.html", "reference_id": "msg00030.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2023-11-22T18:37:05Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00030.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7499", "reference_id": "RHSA-2023:7499", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7499" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7500", "reference_id": "RHSA-2023:7500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7501", "reference_id": "RHSA-2023:7501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7502", "reference_id": "RHSA-2023:7502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7503", "reference_id": "RHSA-2023:7503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7504", "reference_id": "RHSA-2023:7504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7505", "reference_id": "RHSA-2023:7505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7506", "reference_id": "RHSA-2023:7506", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7506" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7507", "reference_id": "RHSA-2023:7507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7508", "reference_id": "RHSA-2023:7508", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7508" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7509", "reference_id": "RHSA-2023:7509", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7509" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7510", "reference_id": "RHSA-2023:7510", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7510" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7511", "reference_id": "RHSA-2023:7511", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7511" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7512", "reference_id": "RHSA-2023:7512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7512" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7547", "reference_id": "RHSA-2023:7547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7569", "reference_id": "RHSA-2023:7569", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7570", "reference_id": "RHSA-2023:7570", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7570" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7573", "reference_id": "RHSA-2023:7573", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7573" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7574", "reference_id": "RHSA-2023:7574", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7574" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7577", "reference_id": "RHSA-2023:7577", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7577" }, { "reference_url": "https://usn.ubuntu.com/6509-1/", "reference_id": "USN-6509-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6509-1/" }, { "reference_url": "https://usn.ubuntu.com/6515-1/", "reference_id": "USN-6515-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6515-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-6212" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yd2q-assr-v3er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51419?format=api", "vulnerability_id": "VCID-zjn8-79ab-tqd3", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5726.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5726.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5726", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38736", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38758", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38764", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38703", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38753", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38752", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38712", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38739", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38776", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38774", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5726" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245901", "reference_id": "2245901", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245901" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:53:41Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:53:41Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:53:41Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1846205", "reference_id": "show_bug.cgi?id=1846205", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:53:41Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1846205" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5726" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjn8-79ab-tqd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/51418?format=api", "vulnerability_id": "VCID-zqpe-9hvc-vkbp", "summary": "Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5725.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5725.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61695", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61691", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61625", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61659", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61644", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61596", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61649", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.61669", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.6168", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5724" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5725" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5728" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5732" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245900", "reference_id": "2245900", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245900" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5535", "reference_id": "dsa-5535", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5535" }, { "reference_url": "https://www.debian.org/security/2023/dsa-5538", "reference_id": "dsa-5538", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://www.debian.org/security/2023/dsa-5538" }, { "reference_url": "https://security.gentoo.org/glsa/202402-25", "reference_id": "GLSA-202402-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-25" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-45" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-45/", "reference_id": "mfsa2023-45", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-45/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-46" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-46/", "reference_id": "mfsa2023-46", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-46/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2023-47" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2023-47/", "reference_id": "mfsa2023-47", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2023-47/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00037.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html", "reference_id": "msg00042.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00042.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6162", "reference_id": "RHSA-2023:6162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6185", "reference_id": "RHSA-2023:6185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6185" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6186", "reference_id": "RHSA-2023:6186", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6186" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6187", "reference_id": "RHSA-2023:6187", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6187" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6188", "reference_id": "RHSA-2023:6188", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6188" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6189", "reference_id": "RHSA-2023:6189", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6189" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6191", "reference_id": "RHSA-2023:6191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6191" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6194", "reference_id": "RHSA-2023:6194", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6194" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6195", "reference_id": "RHSA-2023:6195", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6195" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6196", "reference_id": "RHSA-2023:6196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6197", "reference_id": "RHSA-2023:6197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6198", "reference_id": "RHSA-2023:6198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6199", "reference_id": "RHSA-2023:6199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6199" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1845739", "reference_id": "show_bug.cgi?id=1845739", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-11T18:54:27Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1845739" }, { "reference_url": "https://usn.ubuntu.com/6456-1/", "reference_id": "USN-6456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6456-1/" }, { "reference_url": "https://usn.ubuntu.com/6468-1/", "reference_id": "USN-6468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6468-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380577?format=api", "purl": "pkg:apk/alpine/firefox-esr@115.5.0-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" } ], "aliases": [ "CVE-2023-5725" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zqpe-9hvc-vkbp" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@115.5.0-r0%3Farch=armv7&distroversion=v3.18&reponame=community" }