Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/firefox@111.0-1?distro=sid

Type deb

Namespace debian

Name firefox

Version 111.0-1

Qualifiers

distro	sid

Subpath

Is_vulnerable false

Next_non_vulnerable_version 112.0-1

Latest_non_vulnerable_version 150.0-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-95bb-qys4-tyar

vulnerability_id VCID-95bb-qys4-tyar

summary Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28160

reference_id

reference_type

scores

value	0.00181
scoring_system	epss
scoring_elements	0.39557
published_at	2026-04-24T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39826
published_at	2026-04-02T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39812
published_at	2026-04-12T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39796
published_at	2026-04-13T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39846
published_at	2026-04-16T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39817
published_at	2026-04-18T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39736
published_at	2026-04-21T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39849
published_at	2026-04-04T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.3977
published_at	2026-04-07T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39825
published_at	2026-04-08T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39839
published_at	2026-04-09T12:55:00Z

value	0.00181
scoring_system	epss
scoring_elements	0.39848
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28160

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:37:40Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1802385

reference_id

show_bug.cgi?id=1802385

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:37:40Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1802385

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28160

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-95bb-qys4-tyar

url VCID-9e85-bdkj-zyf3

vulnerability_id VCID-9e85-bdkj-zyf3

summary Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25751.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25751.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-25751

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.30023
published_at	2026-04-24T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30228
published_at	2026-04-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30232
published_at	2026-04-11T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30189
published_at	2026-04-12T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30142
published_at	2026-04-13T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30157
published_at	2026-04-16T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30138
published_at	2026-04-18T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30093
published_at	2026-04-21T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30269
published_at	2026-04-02T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30319
published_at	2026-04-04T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30133
published_at	2026-04-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.30193
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2178458
reference_id	2178458
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2178458

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:09:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_id

mfsa2023-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_id

mfsa2023-10

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:09:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_id

mfsa2023-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_id

mfsa2023-11

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:09:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1333
reference_id	RHSA-2023:1333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1333

reference_url	https://access.redhat.com/errata/RHSA-2023:1336
reference_id	RHSA-2023:1336
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1336

reference_url	https://access.redhat.com/errata/RHSA-2023:1337
reference_id	RHSA-2023:1337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1337

reference_url	https://access.redhat.com/errata/RHSA-2023:1364
reference_id	RHSA-2023:1364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1364

reference_url	https://access.redhat.com/errata/RHSA-2023:1367
reference_id	RHSA-2023:1367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1367

reference_url	https://access.redhat.com/errata/RHSA-2023:1401
reference_id	RHSA-2023:1401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1401

reference_url	https://access.redhat.com/errata/RHSA-2023:1402
reference_id	RHSA-2023:1402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1402

reference_url	https://access.redhat.com/errata/RHSA-2023:1403
reference_id	RHSA-2023:1403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1403

reference_url	https://access.redhat.com/errata/RHSA-2023:1404
reference_id	RHSA-2023:1404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1404

reference_url	https://access.redhat.com/errata/RHSA-2023:1407
reference_id	RHSA-2023:1407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1407

reference_url	https://access.redhat.com/errata/RHSA-2023:1442
reference_id	RHSA-2023:1442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1442

reference_url	https://access.redhat.com/errata/RHSA-2023:1443
reference_id	RHSA-2023:1443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1443

reference_url	https://access.redhat.com/errata/RHSA-2023:1444
reference_id	RHSA-2023:1444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1444

reference_url	https://access.redhat.com/errata/RHSA-2023:1445
reference_id	RHSA-2023:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1445

reference_url	https://access.redhat.com/errata/RHSA-2023:1472
reference_id	RHSA-2023:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1472

reference_url	https://access.redhat.com/errata/RHSA-2023:1479
reference_id	RHSA-2023:1479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814899

reference_id

show_bug.cgi?id=1814899

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:09:17Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814899

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

reference_url	https://usn.ubuntu.com/5972-1/
reference_id	USN-5972-1
reference_type
scores
url	https://usn.ubuntu.com/5972-1/

reference_url	https://usn.ubuntu.com/6120-1/
reference_id	USN-6120-1
reference_type
scores
url	https://usn.ubuntu.com/6120-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-25751

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9e85-bdkj-zyf3

url VCID-ag5p-n7es-v7gh

vulnerability_id VCID-ag5p-n7es-v7gh

summary Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28176.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28176.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28176

reference_id

reference_type

scores

value	0.00156
scoring_system	epss
scoring_elements	0.3613
published_at	2026-04-24T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36354
published_at	2026-04-21T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36493
published_at	2026-04-02T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.3641
published_at	2026-04-18T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36427
published_at	2026-04-16T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36386
published_at	2026-04-13T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36408
published_at	2026-04-12T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36443
published_at	2026-04-11T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36435
published_at	2026-04-09T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36527
published_at	2026-04-04T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36365
published_at	2026-04-07T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36415
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2178472
reference_id	2178472
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2178472

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1808352%2C1811637%2C1815904%2C1817442%2C1818674

reference_id

buglist.cgi?bug_id=1808352%2C1811637%2C1815904%2C1817442%2C1818674

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:25:03Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1808352%2C1811637%2C1815904%2C1817442%2C1818674

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:25:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_id

mfsa2023-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_id

mfsa2023-10

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:25:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_id

mfsa2023-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_id

mfsa2023-11

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:25:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1333
reference_id	RHSA-2023:1333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1333

reference_url	https://access.redhat.com/errata/RHSA-2023:1336
reference_id	RHSA-2023:1336
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1336

reference_url	https://access.redhat.com/errata/RHSA-2023:1337
reference_id	RHSA-2023:1337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1337

reference_url	https://access.redhat.com/errata/RHSA-2023:1364
reference_id	RHSA-2023:1364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1364

reference_url	https://access.redhat.com/errata/RHSA-2023:1367
reference_id	RHSA-2023:1367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1367

reference_url	https://access.redhat.com/errata/RHSA-2023:1401
reference_id	RHSA-2023:1401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1401

reference_url	https://access.redhat.com/errata/RHSA-2023:1402
reference_id	RHSA-2023:1402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1402

reference_url	https://access.redhat.com/errata/RHSA-2023:1403
reference_id	RHSA-2023:1403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1403

reference_url	https://access.redhat.com/errata/RHSA-2023:1404
reference_id	RHSA-2023:1404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1404

reference_url	https://access.redhat.com/errata/RHSA-2023:1407
reference_id	RHSA-2023:1407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1407

reference_url	https://access.redhat.com/errata/RHSA-2023:1442
reference_id	RHSA-2023:1442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1442

reference_url	https://access.redhat.com/errata/RHSA-2023:1443
reference_id	RHSA-2023:1443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1443

reference_url	https://access.redhat.com/errata/RHSA-2023:1444
reference_id	RHSA-2023:1444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1444

reference_url	https://access.redhat.com/errata/RHSA-2023:1445
reference_id	RHSA-2023:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1445

reference_url	https://access.redhat.com/errata/RHSA-2023:1472
reference_id	RHSA-2023:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1472

reference_url	https://access.redhat.com/errata/RHSA-2023:1479
reference_id	RHSA-2023:1479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1479

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

reference_url	https://usn.ubuntu.com/5972-1/
reference_id	USN-5972-1
reference_type
scores
url	https://usn.ubuntu.com/5972-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28176

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ag5p-n7es-v7gh

url VCID-fyrx-ttkj-byc8

vulnerability_id VCID-fyrx-ttkj-byc8

summary Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-25750

reference_id

reference_type

scores

value	0.00156
scoring_system	epss
scoring_elements	0.36171
published_at	2026-04-24T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36538
published_at	2026-04-02T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36452
published_at	2026-04-12T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36429
published_at	2026-04-13T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.3647
published_at	2026-04-16T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36453
published_at	2026-04-18T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36397
published_at	2026-04-21T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36571
published_at	2026-04-04T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36409
published_at	2026-04-07T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.3646
published_at	2026-04-08T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.3648
published_at	2026-04-09T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36488
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-25750

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T18:47:41Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814733

reference_id

show_bug.cgi?id=1814733

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T18:47:41Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814733

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-25750

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fyrx-ttkj-byc8

url VCID-krq5-4j17-vfg9

vulnerability_id VCID-krq5-4j17-vfg9

summary Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28164.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28164

reference_id

reference_type

scores

value	0.00085
scoring_system	epss
scoring_elements	0.24516
published_at	2026-04-24T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24573
published_at	2026-04-21T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24746
published_at	2026-04-02T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24596
published_at	2026-04-18T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24606
published_at	2026-04-16T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24593
published_at	2026-04-13T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.2465
published_at	2026-04-12T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24691
published_at	2026-04-11T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24676
published_at	2026-04-09T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24785
published_at	2026-04-04T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24557
published_at	2026-04-07T12:55:00Z

value	0.00085
scoring_system	epss
scoring_elements	0.24629
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2178470
reference_id	2178470
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2178470

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T14:58:40Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_id

mfsa2023-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_id

mfsa2023-10

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T14:58:40Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_id

mfsa2023-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_id

mfsa2023-11

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T14:58:40Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1333
reference_id	RHSA-2023:1333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1333

reference_url	https://access.redhat.com/errata/RHSA-2023:1336
reference_id	RHSA-2023:1336
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1336

reference_url	https://access.redhat.com/errata/RHSA-2023:1337
reference_id	RHSA-2023:1337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1337

reference_url	https://access.redhat.com/errata/RHSA-2023:1364
reference_id	RHSA-2023:1364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1364

reference_url	https://access.redhat.com/errata/RHSA-2023:1367
reference_id	RHSA-2023:1367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1367

reference_url	https://access.redhat.com/errata/RHSA-2023:1401
reference_id	RHSA-2023:1401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1401

reference_url	https://access.redhat.com/errata/RHSA-2023:1402
reference_id	RHSA-2023:1402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1402

reference_url	https://access.redhat.com/errata/RHSA-2023:1403
reference_id	RHSA-2023:1403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1403

reference_url	https://access.redhat.com/errata/RHSA-2023:1404
reference_id	RHSA-2023:1404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1404

reference_url	https://access.redhat.com/errata/RHSA-2023:1407
reference_id	RHSA-2023:1407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1407

reference_url	https://access.redhat.com/errata/RHSA-2023:1442
reference_id	RHSA-2023:1442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1442

reference_url	https://access.redhat.com/errata/RHSA-2023:1443
reference_id	RHSA-2023:1443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1443

reference_url	https://access.redhat.com/errata/RHSA-2023:1444
reference_id	RHSA-2023:1444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1444

reference_url	https://access.redhat.com/errata/RHSA-2023:1445
reference_id	RHSA-2023:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1445

reference_url	https://access.redhat.com/errata/RHSA-2023:1472
reference_id	RHSA-2023:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1472

reference_url	https://access.redhat.com/errata/RHSA-2023:1479
reference_id	RHSA-2023:1479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1809122

reference_id

show_bug.cgi?id=1809122

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T14:58:40Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1809122

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

reference_url	https://usn.ubuntu.com/5972-1/
reference_id	USN-5972-1
reference_type
scores
url	https://usn.ubuntu.com/5972-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28164

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-krq5-4j17-vfg9

url VCID-ks5r-2ftn-dbcq

vulnerability_id VCID-ks5r-2ftn-dbcq

summary Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28177

reference_id

reference_type

scores

value	0.00299
scoring_system	epss
scoring_elements	0.53275
published_at	2026-04-24T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53223
published_at	2026-04-02T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53298
published_at	2026-04-12T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53281
published_at	2026-04-13T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53319
published_at	2026-04-16T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53325
published_at	2026-04-18T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53305
published_at	2026-04-21T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53248
published_at	2026-04-04T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53216
published_at	2026-04-07T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53268
published_at	2026-04-08T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53263
published_at	2026-04-09T12:55:00Z

value	0.00299
scoring_system	epss
scoring_elements	0.53313
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28177

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1803109%2C1808832%2C1809542%2C1817336

reference_id

buglist.cgi?bug_id=1803109%2C1808832%2C1809542%2C1817336

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:15:35Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1803109%2C1808832%2C1809542%2C1817336

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-08T20:15:35Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28177

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ks5r-2ftn-dbcq

url VCID-w1cg-up6a-7ycg

vulnerability_id VCID-w1cg-up6a-7ycg

summary Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28162.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28162.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28162

reference_id

reference_type

scores

value	0.00131
scoring_system	epss
scoring_elements	0.32471
published_at	2026-04-24T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32625
published_at	2026-04-21T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32773
published_at	2026-04-02T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32654
published_at	2026-04-18T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32678
published_at	2026-04-16T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.3264
published_at	2026-04-13T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32667
published_at	2026-04-12T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32705
published_at	2026-04-11T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32703
published_at	2026-04-09T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32809
published_at	2026-04-04T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.3263
published_at	2026-04-07T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32677
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2178466
reference_id	2178466
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2178466

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:25:38Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_id

mfsa2023-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_id

mfsa2023-10

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:25:38Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_id

mfsa2023-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_id

mfsa2023-11

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:25:38Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1333
reference_id	RHSA-2023:1333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1333

reference_url	https://access.redhat.com/errata/RHSA-2023:1336
reference_id	RHSA-2023:1336
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1336

reference_url	https://access.redhat.com/errata/RHSA-2023:1337
reference_id	RHSA-2023:1337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1337

reference_url	https://access.redhat.com/errata/RHSA-2023:1364
reference_id	RHSA-2023:1364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1364

reference_url	https://access.redhat.com/errata/RHSA-2023:1367
reference_id	RHSA-2023:1367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1367

reference_url	https://access.redhat.com/errata/RHSA-2023:1401
reference_id	RHSA-2023:1401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1401

reference_url	https://access.redhat.com/errata/RHSA-2023:1402
reference_id	RHSA-2023:1402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1402

reference_url	https://access.redhat.com/errata/RHSA-2023:1403
reference_id	RHSA-2023:1403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1403

reference_url	https://access.redhat.com/errata/RHSA-2023:1404
reference_id	RHSA-2023:1404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1404

reference_url	https://access.redhat.com/errata/RHSA-2023:1407
reference_id	RHSA-2023:1407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1407

reference_url	https://access.redhat.com/errata/RHSA-2023:1442
reference_id	RHSA-2023:1442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1442

reference_url	https://access.redhat.com/errata/RHSA-2023:1443
reference_id	RHSA-2023:1443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1443

reference_url	https://access.redhat.com/errata/RHSA-2023:1444
reference_id	RHSA-2023:1444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1444

reference_url	https://access.redhat.com/errata/RHSA-2023:1445
reference_id	RHSA-2023:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1445

reference_url	https://access.redhat.com/errata/RHSA-2023:1472
reference_id	RHSA-2023:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1472

reference_url	https://access.redhat.com/errata/RHSA-2023:1479
reference_id	RHSA-2023:1479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811327

reference_id

show_bug.cgi?id=1811327

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:25:38Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811327

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

reference_url	https://usn.ubuntu.com/5972-1/
reference_id	USN-5972-1
reference_type
scores
url	https://usn.ubuntu.com/5972-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28162

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w1cg-up6a-7ycg

url VCID-wcfk-t1kd-2kgv

vulnerability_id VCID-wcfk-t1kd-2kgv

summary Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25752.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-25752.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-25752

reference_id

reference_type

scores

value	0.00104
scoring_system	epss
scoring_elements	0.28212
published_at	2026-04-24T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28485
published_at	2026-04-09T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28489
published_at	2026-04-11T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28446
published_at	2026-04-12T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28397
published_at	2026-04-13T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28413
published_at	2026-04-16T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.2839
published_at	2026-04-18T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28338
published_at	2026-04-21T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28533
published_at	2026-04-02T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28576
published_at	2026-04-04T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28378
published_at	2026-04-07T12:55:00Z

value	0.00104
scoring_system	epss
scoring_elements	0.28444
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28162

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28176

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2178460
reference_id	2178460
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2178460

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:07:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_id

mfsa2023-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-10

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_id

mfsa2023-10

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:07:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-10/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_id

mfsa2023-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-11

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_id

mfsa2023-11

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:07:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1333
reference_id	RHSA-2023:1333
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1333

reference_url	https://access.redhat.com/errata/RHSA-2023:1336
reference_id	RHSA-2023:1336
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1336

reference_url	https://access.redhat.com/errata/RHSA-2023:1337
reference_id	RHSA-2023:1337
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1337

reference_url	https://access.redhat.com/errata/RHSA-2023:1364
reference_id	RHSA-2023:1364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1364

reference_url	https://access.redhat.com/errata/RHSA-2023:1367
reference_id	RHSA-2023:1367
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1367

reference_url	https://access.redhat.com/errata/RHSA-2023:1401
reference_id	RHSA-2023:1401
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1401

reference_url	https://access.redhat.com/errata/RHSA-2023:1402
reference_id	RHSA-2023:1402
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1402

reference_url	https://access.redhat.com/errata/RHSA-2023:1403
reference_id	RHSA-2023:1403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1403

reference_url	https://access.redhat.com/errata/RHSA-2023:1404
reference_id	RHSA-2023:1404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1404

reference_url	https://access.redhat.com/errata/RHSA-2023:1407
reference_id	RHSA-2023:1407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1407

reference_url	https://access.redhat.com/errata/RHSA-2023:1442
reference_id	RHSA-2023:1442
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1442

reference_url	https://access.redhat.com/errata/RHSA-2023:1443
reference_id	RHSA-2023:1443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1443

reference_url	https://access.redhat.com/errata/RHSA-2023:1444
reference_id	RHSA-2023:1444
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1444

reference_url	https://access.redhat.com/errata/RHSA-2023:1445
reference_id	RHSA-2023:1445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1445

reference_url	https://access.redhat.com/errata/RHSA-2023:1472
reference_id	RHSA-2023:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1472

reference_url	https://access.redhat.com/errata/RHSA-2023:1479
reference_id	RHSA-2023:1479
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1479

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811627

reference_id

show_bug.cgi?id=1811627

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:07:23Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811627

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

reference_url	https://usn.ubuntu.com/5972-1/
reference_id	USN-5972-1
reference_type
scores
url	https://usn.ubuntu.com/5972-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-25752

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wcfk-t1kd-2kgv

url VCID-zyvs-3qte-yyf4

vulnerability_id VCID-zyvs-3qte-yyf4

summary Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28161

reference_id

reference_type

scores

value	0.00155
scoring_system	epss
scoring_elements	0.3602
published_at	2026-04-24T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36392
published_at	2026-04-02T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36301
published_at	2026-04-12T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3628
published_at	2026-04-13T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36322
published_at	2026-04-16T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36306
published_at	2026-04-18T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36252
published_at	2026-04-21T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36425
published_at	2026-04-04T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3626
published_at	2026-04-07T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36308
published_at	2026-04-08T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36331
published_at	2026-04-09T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36337
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28161

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_id

mfsa2023-09

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-09

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_id

mfsa2023-09

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:29:14Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-09/

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811181

reference_id

show_bug.cgi?id=1811181

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-01-09T15:29:14Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811181

reference_url	https://usn.ubuntu.com/5954-1/
reference_id	USN-5954-1
reference_type
scores
url	https://usn.ubuntu.com/5954-1/

fixed_packages

url	pkg:deb/debian/firefox@111.0-1?distro=sid
purl	pkg:deb/debian/firefox@111.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2023-28161

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zyvs-3qte-yyf4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@111.0-1%3Fdistro=sid

Package Instance