Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/419092?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "type": "apk", "namespace": "alpine", "name": "firefox-esr", "version": "68.0-r0", "qualifiers": { "arch": "ppc64le", "distroversion": "v3.17", "reponame": "community" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "68.0.2-r0", "latest_non_vulnerable_version": "102.1.0-r0", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32062?format=api", "vulnerability_id": "VCID-16q2-yvfb-u3br", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11717.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11717.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89362", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89325", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89342", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89346", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89355", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89351", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89348", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89304", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89309", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04689", "scoring_system": "epss", "scoring_elements": "0.89323", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728435", "reference_id": "1728435", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728435" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11717" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-16q2-yvfb-u3br" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32058?format=api", "vulnerability_id": "VCID-5fnn-ru3z-f3dt", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11712.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11712.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59192", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59146", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59197", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.5921", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59229", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59211", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59084", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59157", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00376", "scoring_system": "epss", "scoring_elements": "0.59181", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728432", "reference_id": "1728432", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728432" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11712" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5fnn-ru3z-f3dt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32064?format=api", "vulnerability_id": "VCID-8qtg-h4km-bfg2", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11719.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11719.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11719", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63536", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.6355", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63534", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63413", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63517", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63465", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.635", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00447", "scoring_system": "epss", "scoring_elements": "0.63473", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11719" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11719", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11719" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728436", "reference_id": "1728436", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728436" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1951", "reference_id": "RHSA-2019:1951", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1951" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4076", "reference_id": "RHSA-2020:4076", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4076" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0949", "reference_id": "RHSA-2021:0949", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0949" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4060-1/", "reference_id": "USN-4060-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4060-1/" }, { "reference_url": "https://usn.ubuntu.com/4060-2/", "reference_id": "USN-4060-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4060-2/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11719" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8qtg-h4km-bfg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32056?format=api", "vulnerability_id": "VCID-du2f-xvxg-4bbf", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11709.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11709.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85575", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85544", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85558", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85555", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85552", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85482", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85494", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85511", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02576", "scoring_system": "epss", "scoring_elements": "0.85515", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728430", "reference_id": "1728430", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728430" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11709" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-du2f-xvxg-4bbf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32067?format=api", "vulnerability_id": "VCID-g2jp-fq7y-kkcn", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11730.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11730.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95441", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95417", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95424", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95426", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.9543", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95432", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95398", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95407", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.1971", "scoring_system": "epss", "scoring_elements": "0.95413", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728438", "reference_id": "1728438", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728438" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11730" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g2jp-fq7y-kkcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32057?format=api", "vulnerability_id": "VCID-hb7d-bejp-eueu", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80953", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80915", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80924", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.8094", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80926", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80918", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80859", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80891", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0147", "scoring_system": "epss", "scoring_elements": "0.80888", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728431", "reference_id": "1728431", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728431" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11711" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hb7d-bejp-eueu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32066?format=api", "vulnerability_id": "VCID-hs5f-21nx-gfeb", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11729.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11729.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11729", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68004", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67927", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67978", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67991", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68015", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.68001", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67967", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67907", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.6793", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0055", "scoring_system": "epss", "scoring_elements": "0.67949", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11729" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728437", "reference_id": "1728437", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728437" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1951", "reference_id": "RHSA-2019:1951", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1951" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4190", "reference_id": "RHSA-2019:4190", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4190" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4060-1/", "reference_id": "USN-4060-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4060-1/" }, { "reference_url": "https://usn.ubuntu.com/4060-2/", "reference_id": "USN-4060-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4060-2/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11729" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hs5f-21nx-gfeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32060?format=api", "vulnerability_id": "VCID-rev7-13wx-kqew", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11715.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11715.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70693", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70709", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70732", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70716", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.707", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70636", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70651", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.7067", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00646", "scoring_system": "epss", "scoring_elements": "0.70648", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728434", "reference_id": "1728434", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728434" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11715" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rev7-13wx-kqew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32068?format=api", "vulnerability_id": "VCID-tpk8-jte1-37ap", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9811.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9811.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71679", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71595", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71635", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71646", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.7167", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71653", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71599", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71605", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00684", "scoring_system": "epss", "scoring_elements": "0.71623", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9811" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728439", "reference_id": "1728439", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728439" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-9811" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tpk8-jte1-37ap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/32059?format=api", "vulnerability_id": "VCID-wqpr-2514-u7d4", "summary": "Multiple vulnerabilities have been found in Mozilla Thunderbird,\n the worst of which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11713.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11713.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81089", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81019", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81048", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81072", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81059", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81052", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.80988", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.80997", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0149", "scoring_system": "epss", "scoring_elements": "0.81021", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11709" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9811" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728433", "reference_id": "1728433", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1728433" }, { "reference_url": "https://security.archlinux.org/ASA-201907-4", "reference_id": "ASA-201907-4", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201907-4" }, { "reference_url": "https://security.archlinux.org/AVG-1002", "reference_id": "AVG-1002", "reference_type": "", "scores": [ { "value": "Critical", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1002" }, { "reference_url": "https://security.gentoo.org/glsa/201908-12", "reference_id": "GLSA-201908-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-12" }, { "reference_url": "https://security.gentoo.org/glsa/201908-20", "reference_id": "GLSA-201908-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201908-20" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21", "reference_id": "mfsa2019-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-21" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22", "reference_id": "mfsa2019-22", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-22" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23", "reference_id": "mfsa2019-23", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-23" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28", "reference_id": "mfsa2019-28", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-28" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1763", "reference_id": "RHSA-2019:1763", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1763" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1764", "reference_id": "RHSA-2019:1764", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1764" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1765", "reference_id": "RHSA-2019:1765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1775", "reference_id": "RHSA-2019:1775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1777", "reference_id": "RHSA-2019:1777", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1799", "reference_id": "RHSA-2019:1799", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1799" }, { "reference_url": "https://usn.ubuntu.com/4054-1/", "reference_id": "USN-4054-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4054-1/" }, { "reference_url": "https://usn.ubuntu.com/4064-1/", "reference_id": "USN-4064-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4064-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/419092?format=api", "purl": "pkg:apk/alpine/firefox-esr@68.0-r0?arch=ppc64le&distroversion=v3.17&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" } ], "aliases": [ "CVE-2019-11713" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wqpr-2514-u7d4" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.0-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community" }