Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
Typeapk
Namespacealpine
Namethunderbird
Version91.10.0-r0
Qualifiers
arch x86
distroversion v3.22
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version102.0-r0
Latest_non_vulnerable_version128.5.0-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-8pg7-szzq-mqc6
vulnerability_id VCID-8pg7-szzq-mqc6
summary A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31741.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31741.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-31741
reference_id
reference_type
scores
0
value 0.0031
scoring_system epss
scoring_elements 0.54498
published_at 2026-06-05T12:55:00Z
1
value 0.0031
scoring_system epss
scoring_elements 0.54441
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-31741
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092024
reference_id 2092024
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092024
14
reference_url https://security.archlinux.org/AVG-2760
reference_id AVG-2760
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2760
15
reference_url https://security.archlinux.org/AVG-2761
reference_id AVG-2761
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2761
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
reference_id mfsa2022-20
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-20/
reference_id mfsa2022-20
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:58:38Z/
url https://www.mozilla.org/security/advisories/mfsa2022-20/
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
reference_id mfsa2022-21
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
19
reference_url https://www.mozilla.org/security/advisories/mfsa2022-21/
reference_id mfsa2022-21
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:58:38Z/
url https://www.mozilla.org/security/advisories/mfsa2022-21/
20
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
reference_id mfsa2022-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
21
reference_url https://www.mozilla.org/security/advisories/mfsa2022-22/
reference_id mfsa2022-22
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:58:38Z/
url https://www.mozilla.org/security/advisories/mfsa2022-22/
22
reference_url https://access.redhat.com/errata/RHSA-2022:4870
reference_id RHSA-2022:4870
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4870
23
reference_url https://access.redhat.com/errata/RHSA-2022:4871
reference_id RHSA-2022:4871
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4871
24
reference_url https://access.redhat.com/errata/RHSA-2022:4872
reference_id RHSA-2022:4872
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4872
25
reference_url https://access.redhat.com/errata/RHSA-2022:4873
reference_id RHSA-2022:4873
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4873
26
reference_url https://access.redhat.com/errata/RHSA-2022:4875
reference_id RHSA-2022:4875
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4875
27
reference_url https://access.redhat.com/errata/RHSA-2022:4876
reference_id RHSA-2022:4876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4876
28
reference_url https://access.redhat.com/errata/RHSA-2022:4887
reference_id RHSA-2022:4887
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4887
29
reference_url https://access.redhat.com/errata/RHSA-2022:4888
reference_id RHSA-2022:4888
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4888
30
reference_url https://access.redhat.com/errata/RHSA-2022:4889
reference_id RHSA-2022:4889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4889
31
reference_url https://access.redhat.com/errata/RHSA-2022:4890
reference_id RHSA-2022:4890
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4890
32
reference_url https://access.redhat.com/errata/RHSA-2022:4891
reference_id RHSA-2022:4891
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4891
33
reference_url https://access.redhat.com/errata/RHSA-2022:4892
reference_id RHSA-2022:4892
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4892
34
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1767590
reference_id show_bug.cgi?id=1767590
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-15T18:58:38Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1767590
35
reference_url https://usn.ubuntu.com/5475-1/
reference_id USN-5475-1
reference_type
scores
url https://usn.ubuntu.com/5475-1/
36
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community
aliases CVE-2022-31741
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8pg7-szzq-mqc6
1
url VCID-bvhn-6mnr-vyas
vulnerability_id VCID-bvhn-6mnr-vyas
summary An attacker could have exploited a timing attack by sending a large number of allowCredential entries and detecting the difference between invalid key handles and cross-origin key handles. This could have led to cross-origin account linking in violation of WebAuthn goals.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31742.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31742.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-31742
reference_id
reference_type
scores
0
value 0.00357
scoring_system epss
scoring_elements 0.58309
published_at 2026-06-05T12:55:00Z
1
value 0.00357
scoring_system epss
scoring_elements 0.58261
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-31742
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092025
reference_id 2092025
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092025
14
reference_url https://security.archlinux.org/AVG-2760
reference_id AVG-2760
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2760
15
reference_url https://security.archlinux.org/AVG-2761
reference_id AVG-2761
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2761
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
reference_id mfsa2022-20
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-20/
reference_id mfsa2022-20
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:36:32Z/
url https://www.mozilla.org/security/advisories/mfsa2022-20/
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
reference_id mfsa2022-21
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
19
reference_url https://www.mozilla.org/security/advisories/mfsa2022-21/
reference_id mfsa2022-21
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:36:32Z/
url https://www.mozilla.org/security/advisories/mfsa2022-21/
20
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
reference_id mfsa2022-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
21
reference_url https://www.mozilla.org/security/advisories/mfsa2022-22/
reference_id mfsa2022-22
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:36:32Z/
url https://www.mozilla.org/security/advisories/mfsa2022-22/
22
reference_url https://access.redhat.com/errata/RHSA-2022:4870
reference_id RHSA-2022:4870
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4870
23
reference_url https://access.redhat.com/errata/RHSA-2022:4871
reference_id RHSA-2022:4871
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4871
24
reference_url https://access.redhat.com/errata/RHSA-2022:4872
reference_id RHSA-2022:4872
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4872
25
reference_url https://access.redhat.com/errata/RHSA-2022:4873
reference_id RHSA-2022:4873
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4873
26
reference_url https://access.redhat.com/errata/RHSA-2022:4875
reference_id RHSA-2022:4875
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4875
27
reference_url https://access.redhat.com/errata/RHSA-2022:4876
reference_id RHSA-2022:4876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4876
28
reference_url https://access.redhat.com/errata/RHSA-2022:4887
reference_id RHSA-2022:4887
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4887
29
reference_url https://access.redhat.com/errata/RHSA-2022:4888
reference_id RHSA-2022:4888
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4888
30
reference_url https://access.redhat.com/errata/RHSA-2022:4889
reference_id RHSA-2022:4889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4889
31
reference_url https://access.redhat.com/errata/RHSA-2022:4890
reference_id RHSA-2022:4890
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4890
32
reference_url https://access.redhat.com/errata/RHSA-2022:4891
reference_id RHSA-2022:4891
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4891
33
reference_url https://access.redhat.com/errata/RHSA-2022:4892
reference_id RHSA-2022:4892
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4892
34
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1730434
reference_id show_bug.cgi?id=1730434
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T18:36:32Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1730434
35
reference_url https://usn.ubuntu.com/5475-1/
reference_id USN-5475-1
reference_type
scores
url https://usn.ubuntu.com/5475-1/
36
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community
aliases CVE-2022-31742
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bvhn-6mnr-vyas
2
url VCID-kgd7-w1fh-juaq
vulnerability_id VCID-kgd7-w1fh-juaq
summary When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. This could have been used by an attacker to send an email message with the attacker's digital signature, that was shown with an arbitrary sender email address chosen by the attacker. If the sender name started with a false email address, followed by many Braille space characters, the attacker's email address was not visible. Because Thunderbird compared the invisible sender address with the signature's email address, if the signing key or certificate was accepted by Thunderbird, the email was shown as having a valid digital signature.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1834.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1834.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1834
reference_id
reference_type
scores
0
value 0.00133
scoring_system epss
scoring_elements 0.32372
published_at 2026-06-04T12:55:00Z
1
value 0.00133
scoring_system epss
scoring_elements 0.32443
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1834
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092416
reference_id 2092416
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092416
14
reference_url https://security.archlinux.org/AVG-2761
reference_id AVG-2761
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2761
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
reference_id mfsa2022-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
16
reference_url https://www.mozilla.org/security/advisories/mfsa2022-22/
reference_id mfsa2022-22
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:15:11Z/
url https://www.mozilla.org/security/advisories/mfsa2022-22/
17
reference_url https://access.redhat.com/errata/RHSA-2022:4887
reference_id RHSA-2022:4887
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4887
18
reference_url https://access.redhat.com/errata/RHSA-2022:4888
reference_id RHSA-2022:4888
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4888
19
reference_url https://access.redhat.com/errata/RHSA-2022:4889
reference_id RHSA-2022:4889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4889
20
reference_url https://access.redhat.com/errata/RHSA-2022:4890
reference_id RHSA-2022:4890
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4890
21
reference_url https://access.redhat.com/errata/RHSA-2022:4891
reference_id RHSA-2022:4891
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4891
22
reference_url https://access.redhat.com/errata/RHSA-2022:4892
reference_id RHSA-2022:4892
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4892
23
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1767816
reference_id show_bug.cgi?id=1767816
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:15:11Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1767816
24
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community
aliases CVE-2022-1834
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kgd7-w1fh-juaq
3
url VCID-rnmc-fdtb-ubcc
vulnerability_id VCID-rnmc-fdtb-ubcc
summary When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.*This bug only affects Firefox for Windows. Other operating systems are unaffected.*
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31739.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31739.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-31739
reference_id
reference_type
scores
0
value 0.00531
scoring_system epss
scoring_elements 0.67658
published_at 2026-06-05T12:55:00Z
1
value 0.00531
scoring_system epss
scoring_elements 0.67617
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-31739
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092022
reference_id 2092022
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092022
4
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
reference_id mfsa2022-20
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
5
reference_url https://www.mozilla.org/security/advisories/mfsa2022-20/
reference_id mfsa2022-20
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:52:42Z/
url https://www.mozilla.org/security/advisories/mfsa2022-20/
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
reference_id mfsa2022-21
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
7
reference_url https://www.mozilla.org/security/advisories/mfsa2022-21/
reference_id mfsa2022-21
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:52:42Z/
url https://www.mozilla.org/security/advisories/mfsa2022-21/
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
reference_id mfsa2022-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
9
reference_url https://www.mozilla.org/security/advisories/mfsa2022-22/
reference_id mfsa2022-22
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:52:42Z/
url https://www.mozilla.org/security/advisories/mfsa2022-22/
10
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1765049
reference_id show_bug.cgi?id=1765049
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:52:42Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1765049
fixed_packages
0
url pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community
aliases CVE-2022-31739
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rnmc-fdtb-ubcc
4
url VCID-xv8k-7bdk-wffg
vulnerability_id VCID-xv8k-7bdk-wffg
summary On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31740.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-31740.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-31740
reference_id
reference_type
scores
0
value 0.00408
scoring_system epss
scoring_elements 0.61546
published_at 2026-06-05T12:55:00Z
1
value 0.00408
scoring_system epss
scoring_elements 0.61498
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-31740
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1529
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1802
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1834
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31736
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31737
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31738
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31741
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31742
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31747
12
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2092023
reference_id 2092023
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2092023
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
reference_id mfsa2022-20
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-20
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-20/
reference_id mfsa2022-20
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:51:22Z/
url https://www.mozilla.org/security/advisories/mfsa2022-20/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
reference_id mfsa2022-21
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-21
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-21/
reference_id mfsa2022-21
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:51:22Z/
url https://www.mozilla.org/security/advisories/mfsa2022-21/
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
reference_id mfsa2022-22
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-22
19
reference_url https://www.mozilla.org/security/advisories/mfsa2022-22/
reference_id mfsa2022-22
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:51:22Z/
url https://www.mozilla.org/security/advisories/mfsa2022-22/
20
reference_url https://access.redhat.com/errata/RHSA-2022:4870
reference_id RHSA-2022:4870
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4870
21
reference_url https://access.redhat.com/errata/RHSA-2022:4871
reference_id RHSA-2022:4871
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4871
22
reference_url https://access.redhat.com/errata/RHSA-2022:4872
reference_id RHSA-2022:4872
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4872
23
reference_url https://access.redhat.com/errata/RHSA-2022:4873
reference_id RHSA-2022:4873
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4873
24
reference_url https://access.redhat.com/errata/RHSA-2022:4875
reference_id RHSA-2022:4875
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4875
25
reference_url https://access.redhat.com/errata/RHSA-2022:4876
reference_id RHSA-2022:4876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4876
26
reference_url https://access.redhat.com/errata/RHSA-2022:4887
reference_id RHSA-2022:4887
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4887
27
reference_url https://access.redhat.com/errata/RHSA-2022:4888
reference_id RHSA-2022:4888
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4888
28
reference_url https://access.redhat.com/errata/RHSA-2022:4889
reference_id RHSA-2022:4889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4889
29
reference_url https://access.redhat.com/errata/RHSA-2022:4890
reference_id RHSA-2022:4890
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4890
30
reference_url https://access.redhat.com/errata/RHSA-2022:4891
reference_id RHSA-2022:4891
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4891
31
reference_url https://access.redhat.com/errata/RHSA-2022:4892
reference_id RHSA-2022:4892
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:4892
32
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1766806
reference_id show_bug.cgi?id=1766806
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T13:51:22Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1766806
33
reference_url https://usn.ubuntu.com/5475-1/
reference_id USN-5475-1
reference_type
scores
url https://usn.ubuntu.com/5475-1/
34
reference_url https://usn.ubuntu.com/5494-1/
reference_id USN-5494-1
reference_type
scores
url https://usn.ubuntu.com/5494-1/
35
reference_url https://usn.ubuntu.com/5512-1/
reference_id USN-5512-1
reference_type
scores
url https://usn.ubuntu.com/5512-1/
fixed_packages
0
url pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
purl pkg:apk/alpine/thunderbird@91.10.0-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community
aliases CVE-2022-31740
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xv8k-7bdk-wffg
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/thunderbird@91.10.0-r0%3Farch=x86&distroversion=v3.22&reponame=community