Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community

Type apk

Namespace alpine

Name thunderbird

Version 128.5.0-r0

Qualifiers

arch	s390x
distroversion	v3.20
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3g2k-au3t-a7c9

vulnerability_id VCID-3g2k-au3t-a7c9

summary Enhanced Tracking Protection's Strict mode may have inadvertently allowed a CSP `frame-src` bypass and DOM-based XSS through the Google SafeFrame shim in the Web Compatibility extension. This issue could have exposed users to malicious frames masquerading as legitimate content.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11694.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11694.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11694

reference_id

reference_type

scores

value	0.00149
scoring_system	epss
scoring_elements	0.352
published_at	2026-06-06T12:55:00Z

value	0.00149
scoring_system	epss
scoring_elements	0.35185
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11694

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11694
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11694

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328941
reference_id	2328941
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328941

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-65

reference_id

mfsa2024-65

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-65

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-65/

reference_id

mfsa2024-65

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-65/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-70

reference_id

mfsa2024-70

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-70

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-70/

reference_id

mfsa2024-70

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-70/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1924167

reference_id

show_bug.cgi?id=1924167

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:37:03Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1924167

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

reference_url	https://usn.ubuntu.com/7193-1/
reference_id	USN-7193-1
reference_type
scores
url	https://usn.ubuntu.com/7193-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11694

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3g2k-au3t-a7c9

url VCID-3s77-cegs-huee

vulnerability_id VCID-3s77-cegs-huee

summary Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in Apple's GPU driver. *This bug only affected the application on Apple M series hardware. Other platforms were unaffected.*

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11691.json

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11691.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11691

reference_id

reference_type

scores

value	0.00219
scoring_system	epss
scoring_elements	0.44634
published_at	2026-06-06T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44626
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11691

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328940
reference_id	2328940
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328940

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-65

reference_id

mfsa2024-65

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-65

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-65/

reference_id

mfsa2024-65

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-65/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-70

reference_id

mfsa2024-70

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-70

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-70/

reference_id

mfsa2024-70

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-70/

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1914707

reference_id

show_bug.cgi?id=1914707

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1914707

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1924184

reference_id

show_bug.cgi?id=1924184

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-30T04:55:57Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1924184

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11691

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3s77-cegs-huee

url VCID-4grd-ngdg-aqft

vulnerability_id VCID-4grd-ngdg-aqft

summary An attacker could cause a select dropdown to be shown over another tab; this could have led to user confusion and possible spoofing attacks.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11692.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11692.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11692

reference_id

reference_type

scores

value	0.00082
scoring_system	epss
scoring_elements	0.24218
published_at	2026-06-06T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24235
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11692

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11692
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11692

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328946
reference_id	2328946
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328946

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:45:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:45:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:45:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:45:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1909535

reference_id

show_bug.cgi?id=1909535

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:45:17Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1909535

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11692

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4grd-ngdg-aqft

url VCID-5tzy-vsqt-rqf2

vulnerability_id VCID-5tzy-vsqt-rqf2

summary A crafted URL containing Arabic script and whitespace characters could have hidden the true origin of the page, resulting in a potential spoofing attack.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11695.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11695.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11695

reference_id

reference_type

scores

value	0.00167
scoring_system	epss
scoring_elements	0.37641
published_at	2026-06-06T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37638
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11695

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11695
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11695

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328948
reference_id	2328948
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328948

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:43:59Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:43:59Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:43:59Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:43:59Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1925496

reference_id

show_bug.cgi?id=1925496

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T16:43:59Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1925496

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11695

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5tzy-vsqt-rqf2

url VCID-7pwf-yct4-pygg

vulnerability_id VCID-7pwf-yct4-pygg

summary The executable file warning was not presented when downloading .library-ms files. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11693.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11693.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11693

reference_id

reference_type

scores

value	0.00393
scoring_system	epss
scoring_elements	0.6064
published_at	2026-06-06T12:55:00Z

value	0.00393
scoring_system	epss
scoring_elements	0.60633
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11693

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328949
reference_id	2328949
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328949

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:32:54Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:32:54Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:32:54Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:32:54Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1921458

reference_id

show_bug.cgi?id=1921458

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:32:54Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1921458

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11693

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7pwf-yct4-pygg

url VCID-r67t-hasn-nqda

vulnerability_id VCID-r67t-hasn-nqda

summary When handling keypress events, an attacker may have been able to trick a user into bypassing the "Open Executable File?" confirmation dialog. This could have led to malicious code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11697.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11697.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11697

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25676
published_at	2026-06-06T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25685
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11697

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11697
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11697

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328950
reference_id	2328950
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328950

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:26:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:26:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:26:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:26:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1842187

reference_id

show_bug.cgi?id=1842187

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:26:51Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1842187

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11697

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r67t-hasn-nqda

url VCID-wzux-r3fv-fyg9

vulnerability_id VCID-wzux-r3fv-fyg9

summary The application failed to account for exceptions thrown by the `loadManifestFromFile` method during add-on signature verification. This flaw, triggered by an invalid or unsupported extension manifest, could have caused runtime errors that disrupted the signature validation process. As a result, the enforcement of signature validation for unrelated add-ons may have been bypassed. Signature validation in this context is used to ensure that third-party applications on the user's computer have not tampered with the user's extensions, limiting the impact of this issue.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11696.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11696.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11696

reference_id

reference_type

scores

value	0.00056
scoring_system	epss
scoring_elements	0.17846
published_at	2026-06-06T12:55:00Z

value	0.00056
scoring_system	epss
scoring_elements	0.1785
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11696

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11696
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11696

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328943
reference_id	2328943
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328943

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:02:13Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:02:13Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:02:13Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:02:13Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1929600

reference_id

show_bug.cgi?id=1929600

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:02:13Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1929600

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11696

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wzux-r3fv-fyg9

url VCID-zgwh-84ue-1kdw

vulnerability_id VCID-zgwh-84ue-1kdw

summary Memory safety bugs present in Firefox 132, Thunderbird 132, Firefox ESR 128.4, and Thunderbird 128.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11699.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11699.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11699

reference_id

reference_type

scores

value	0.0012
scoring_system	epss
scoring_elements	0.3058
published_at	2026-06-06T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.30613
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11699

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2328947
reference_id	2328947
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2328947

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1880582%2C1929911

reference_id

buglist.cgi?bug_id=1880582%2C1929911

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:00:52Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1880582%2C1929911

reference_url	https://security.gentoo.org/glsa/202501-10
reference_id	GLSA-202501-10
reference_type
scores
url	https://security.gentoo.org/glsa/202501-10

reference_url	https://security.gentoo.org/glsa/202505-03
reference_id	GLSA-202505-03
reference_type
scores
url	https://security.gentoo.org/glsa/202505-03

reference_url	https://security.gentoo.org/glsa/202509-02
reference_id	GLSA-202509-02
reference_type
scores
url	https://security.gentoo.org/glsa/202509-02

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_id

mfsa2024-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_id

mfsa2024-63

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:00:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-63/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_id

mfsa2024-64

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-64

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_id

mfsa2024-64

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:00:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-64/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_id

mfsa2024-67

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-67

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_id

mfsa2024-67

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:00:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-67/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_id

mfsa2024-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2024-68

reference_url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_id

mfsa2024-68

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:00:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2024-68/

reference_url	https://access.redhat.com/errata/RHSA-2024:10591
reference_id	RHSA-2024:10591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10591

reference_url	https://access.redhat.com/errata/RHSA-2024:10592
reference_id	RHSA-2024:10592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10592

reference_url	https://access.redhat.com/errata/RHSA-2024:10667
reference_id	RHSA-2024:10667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10667

reference_url	https://access.redhat.com/errata/RHSA-2024:10702
reference_id	RHSA-2024:10702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10702

reference_url	https://access.redhat.com/errata/RHSA-2024:10703
reference_id	RHSA-2024:10703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10703

reference_url	https://access.redhat.com/errata/RHSA-2024:10704
reference_id	RHSA-2024:10704
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10704

reference_url	https://access.redhat.com/errata/RHSA-2024:10710
reference_id	RHSA-2024:10710
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10710

reference_url	https://access.redhat.com/errata/RHSA-2024:10733
reference_id	RHSA-2024:10733
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10733

reference_url	https://access.redhat.com/errata/RHSA-2024:10734
reference_id	RHSA-2024:10734
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10734

reference_url	https://access.redhat.com/errata/RHSA-2024:10742
reference_id	RHSA-2024:10742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10742

reference_url	https://access.redhat.com/errata/RHSA-2024:10743
reference_id	RHSA-2024:10743
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10743

reference_url	https://access.redhat.com/errata/RHSA-2024:10745
reference_id	RHSA-2024:10745
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10745

reference_url	https://access.redhat.com/errata/RHSA-2024:10748
reference_id	RHSA-2024:10748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10748

reference_url	https://access.redhat.com/errata/RHSA-2024:10752
reference_id	RHSA-2024:10752
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10752

reference_url	https://access.redhat.com/errata/RHSA-2024:10844
reference_id	RHSA-2024:10844
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10844

reference_url	https://access.redhat.com/errata/RHSA-2024:10848
reference_id	RHSA-2024:10848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10848

reference_url	https://access.redhat.com/errata/RHSA-2024:10849
reference_id	RHSA-2024:10849
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10849

reference_url	https://access.redhat.com/errata/RHSA-2024:10880
reference_id	RHSA-2024:10880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10880

reference_url	https://access.redhat.com/errata/RHSA-2024:10881
reference_id	RHSA-2024:10881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10881

reference_url	https://access.redhat.com/errata/RHSA-2026:18479
reference_id	RHSA-2026:18479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:18479

reference_url	https://usn.ubuntu.com/7134-1/
reference_id	USN-7134-1
reference_type
scores
url	https://usn.ubuntu.com/7134-1/

fixed_packages

url	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/thunderbird@128.5.0-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

aliases CVE-2024-11699

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zgwh-84ue-1kdw

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@128.5.0-r0%3Farch=s390x&distroversion=v3.20&reponame=community

Package Instance