Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/firefox@96.0-1?distro=sid

Type deb

Namespace debian

Name firefox

Version 96.0-1

Qualifiers

distro	sid

Subpath

Is_vulnerable false

Next_non_vulnerable_version 97.0-1

Latest_non_vulnerable_version 149.0.2-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1phe-59fw-9qdt

vulnerability_id VCID-1phe-59fw-9qdt

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22739.json

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22739.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22739

reference_id

reference_type

scores

value	0.00445
scoring_system	epss
scoring_elements	0.63459
published_at	2026-04-21T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63473
published_at	2026-04-18T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63404
published_at	2026-04-02T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63465
published_at	2026-04-16T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63432
published_at	2026-04-13T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63468
published_at	2026-04-12T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63483
published_at	2026-04-11T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63466
published_at	2026-04-09T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63448
published_at	2026-04-08T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63431
published_at	2026-04-04T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63397
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039573
reference_id	2039573
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039573

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:32:36Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:32:36Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:32:36Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1744158

reference_id

show_bug.cgi?id=1744158

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:32:36Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1744158

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22739

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1phe-59fw-9qdt

url VCID-617s-c6y6-ube4

vulnerability_id VCID-617s-c6y6-ube4

summary Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22752

reference_id

reference_type

scores

value	0.00369
scoring_system	epss
scoring_elements	0.58823
published_at	2026-04-21T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.5878
published_at	2026-04-02T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58822
published_at	2026-04-08T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58829
published_at	2026-04-12T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58847
published_at	2026-04-18T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.5881
published_at	2026-04-13T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58842
published_at	2026-04-16T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58801
published_at	2026-04-04T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.5877
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22752

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1741210%2C1742770

reference_id

buglist.cgi?bug_id=1741210%2C1742770

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-18T14:14:31Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1741210%2C1742770

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-18T14:14:31Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22752

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-617s-c6y6-ube4

url VCID-6f7n-yr9x-8fbw

vulnerability_id VCID-6f7n-yr9x-8fbw

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22751.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22751.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22751

reference_id

reference_type

scores

value	0.00531
scoring_system	epss
scoring_elements	0.67286
published_at	2026-04-21T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67307
published_at	2026-04-18T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67223
published_at	2026-04-02T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.6726
published_at	2026-04-13T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67295
published_at	2026-04-16T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67308
published_at	2026-04-11T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67289
published_at	2026-04-09T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67275
published_at	2026-04-08T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67247
published_at	2026-04-04T12:55:00Z

value	0.00531
scoring_system	epss
scoring_elements	0.67224
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039574
reference_id	2039574
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039574

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1664149%2C1737816%2C1739366%2C1740274%2C1740797%2C1741201%2C1741869%2C1743221%2C1743515%2C1745373%2C1746011

reference_id

buglist.cgi?bug_id=1664149%2C1737816%2C1739366%2C1740274%2C1740797%2C1741201%2C1741869%2C1743221%2C1743515%2C1745373%2C1746011

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T14:49:31Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1664149%2C1737816%2C1739366%2C1740274%2C1740797%2C1741201%2C1741869%2C1743221%2C1743515%2C1745373%2C1746011

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T14:49:31Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T14:49:31Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-16T14:49:31Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22751

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6f7n-yr9x-8fbw

url VCID-8enx-7aa9-cqd3

vulnerability_id VCID-8enx-7aa9-cqd3

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22737.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22737.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22737

reference_id

reference_type

scores

value	0.00395
scoring_system	epss
scoring_elements	0.6042
published_at	2026-04-18T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60412
published_at	2026-04-21T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60323
published_at	2026-04-02T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60371
published_at	2026-04-13T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.6039
published_at	2026-04-12T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60404
published_at	2026-04-11T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60383
published_at	2026-04-09T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60367
published_at	2026-04-08T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.6035
published_at	2026-04-04T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60318
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039567
reference_id	2039567
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039567

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:08:04Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:08:04Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:08:04Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1745874

reference_id

show_bug.cgi?id=1745874

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:08:04Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1745874

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22737

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8enx-7aa9-cqd3

url VCID-d194-2uh4-pug1

vulnerability_id VCID-d194-2uh4-pug1

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22743.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22743.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22743

reference_id

reference_type

scores

value	0.00427
scoring_system	epss
scoring_elements	0.62325
published_at	2026-04-21T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62342
published_at	2026-04-18T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62238
published_at	2026-04-02T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62335
published_at	2026-04-16T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62289
published_at	2026-04-13T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62311
published_at	2026-04-12T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62321
published_at	2026-04-11T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62301
published_at	2026-04-09T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62284
published_at	2026-04-08T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62268
published_at	2026-04-04T12:55:00Z

value	0.00427
scoring_system	epss
scoring_elements	0.62234
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039561
reference_id	2039561
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039561

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:30:49Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:30:49Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:30:49Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1739220

reference_id

show_bug.cgi?id=1739220

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:30:49Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1739220

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22743

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d194-2uh4-pug1

url VCID-d9vf-maye-6ff7

vulnerability_id VCID-d9vf-maye-6ff7

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22745.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22745.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22745

reference_id

reference_type

scores

value	0.00467
scoring_system	epss
scoring_elements	0.64458
published_at	2026-04-21T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64466
published_at	2026-04-18T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64394
published_at	2026-04-02T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64454
published_at	2026-04-16T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64419
published_at	2026-04-13T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64448
published_at	2026-04-12T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.6446
published_at	2026-04-11T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64447
published_at	2026-04-09T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64432
published_at	2026-04-08T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64423
published_at	2026-04-04T12:55:00Z

value	0.00467
scoring_system	epss
scoring_elements	0.64383
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039570
reference_id	2039570
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039570

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:02:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:02:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:02:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1735856

reference_id

show_bug.cgi?id=1735856

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:02:51Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1735856

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22745

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9vf-maye-6ff7

url VCID-hn17-6nvj-9qfw

vulnerability_id VCID-hn17-6nvj-9qfw

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22738.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22738.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22738

reference_id

reference_type

scores

value	0.0051
scoring_system	epss
scoring_elements	0.66441
published_at	2026-04-21T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66456
published_at	2026-04-18T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66368
published_at	2026-04-02T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66439
published_at	2026-04-16T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66403
published_at	2026-04-13T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66434
published_at	2026-04-12T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66446
published_at	2026-04-11T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66426
published_at	2026-04-09T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66412
published_at	2026-04-08T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66394
published_at	2026-04-04T12:55:00Z

value	0.0051
scoring_system	epss
scoring_elements	0.66364
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039566
reference_id	2039566
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039566

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:06:50Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:06:50Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:06:50Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1742382

reference_id

show_bug.cgi?id=1742382

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:06:50Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1742382

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22738

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hn17-6nvj-9qfw

url VCID-mzbp-5r6m-27cm

vulnerability_id VCID-mzbp-5r6m-27cm

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22740.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22740.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22740

reference_id

reference_type

scores

value	0.00269
scoring_system	epss
scoring_elements	0.50428
published_at	2026-04-21T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50451
published_at	2026-04-18T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50374
published_at	2026-04-02T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50447
published_at	2026-04-16T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50417
published_at	2026-04-12T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.5044
published_at	2026-04-11T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50399
published_at	2026-04-09T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50406
published_at	2026-04-08T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50403
published_at	2026-04-13T12:55:00Z

value	0.00269
scoring_system	epss
scoring_elements	0.50353
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039565
reference_id	2039565
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039565

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:31:42Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:31:42Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:31:42Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1742334

reference_id

show_bug.cgi?id=1742334

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:31:42Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1742334

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22740

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mzbp-5r6m-27cm

url VCID-n796-xf5e-pucq

vulnerability_id VCID-n796-xf5e-pucq

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4140.json

reference_id

reference_type

scores

value	9.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4140.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4140

reference_id

reference_type

scores

value	0.00058
scoring_system	epss
scoring_elements	0.18188
published_at	2026-04-01T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18344
published_at	2026-04-02T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18397
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19913
published_at	2026-04-13T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19971
published_at	2026-04-12T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20016
published_at	2026-04-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19996
published_at	2026-04-09T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19942
published_at	2026-04-08T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19862
published_at	2026-04-07T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19893
published_at	2026-04-21T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19895
published_at	2026-04-18T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19891
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039568
reference_id	2039568
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039568

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:55:14Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:55:14Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:55:14Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1746720

reference_id

show_bug.cgi?id=1746720

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-16T15:55:14Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1746720

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2021-4140

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n796-xf5e-pucq

url VCID-qgvp-4eea-bkgm

vulnerability_id VCID-qgvp-4eea-bkgm

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22748.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22748.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22748

reference_id

reference_type

scores

value	0.00445
scoring_system	epss
scoring_elements	0.63458
published_at	2026-04-21T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63472
published_at	2026-04-18T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63404
published_at	2026-04-02T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63465
published_at	2026-04-16T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63432
published_at	2026-04-13T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63467
published_at	2026-04-12T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63483
published_at	2026-04-11T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63466
published_at	2026-04-09T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63448
published_at	2026-04-08T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63431
published_at	2026-04-04T12:55:00Z

value	0.00445
scoring_system	epss
scoring_elements	0.63397
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039569
reference_id	2039569
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039569

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:55:10Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:55:10Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:55:10Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1705211

reference_id

show_bug.cgi?id=1705211

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:55:10Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1705211

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22748

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qgvp-4eea-bkgm

url VCID-xp3b-fyfq-xbbq

vulnerability_id VCID-xp3b-fyfq-xbbq

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22741.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22741.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22741

reference_id

reference_type

scores

value	0.00463
scoring_system	epss
scoring_elements	0.64337
published_at	2026-04-21T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64347
published_at	2026-04-18T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64281
published_at	2026-04-02T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64336
published_at	2026-04-16T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64302
published_at	2026-04-13T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64331
published_at	2026-04-12T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64342
published_at	2026-04-11T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64329
published_at	2026-04-09T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64315
published_at	2026-04-08T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64309
published_at	2026-04-04T12:55:00Z

value	0.00463
scoring_system	epss
scoring_elements	0.64266
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039564
reference_id	2039564
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039564

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:29:58Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:29:58Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:29:58Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1740389

reference_id

show_bug.cgi?id=1740389

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:29:58Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1740389

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22741

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xp3b-fyfq-xbbq

url VCID-y43f-tmvr-hqas

vulnerability_id VCID-y43f-tmvr-hqas

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22747.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22747.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22747

reference_id

reference_type

scores

value	0.0013
scoring_system	epss
scoring_elements	0.32403
published_at	2026-04-21T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32433
published_at	2026-04-18T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32455
published_at	2026-04-16T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32546
published_at	2026-04-02T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32419
published_at	2026-04-13T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32446
published_at	2026-04-12T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32485
published_at	2026-04-11T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.3248
published_at	2026-04-09T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32454
published_at	2026-04-08T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32582
published_at	2026-04-04T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32406
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039572
reference_id	2039572
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039572

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:04:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:04:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:04:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1735028

reference_id

show_bug.cgi?id=1735028

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:04:07Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1735028

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

reference_url	https://usn.ubuntu.com/5506-1/
reference_id	USN-5506-1
reference_type
scores
url	https://usn.ubuntu.com/5506-1/

reference_url	https://usn.ubuntu.com/5872-1/
reference_id	USN-5872-1
reference_type
scores
url	https://usn.ubuntu.com/5872-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22747

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y43f-tmvr-hqas

url VCID-y7wn-9j43-jba3

vulnerability_id VCID-y7wn-9j43-jba3

summary Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22742.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-22742.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22742

reference_id

reference_type

scores

value	0.00319
scoring_system	epss
scoring_elements	0.54914
published_at	2026-04-21T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54931
published_at	2026-04-16T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54878
published_at	2026-04-02T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54893
published_at	2026-04-13T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54916
published_at	2026-04-12T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54934
published_at	2026-04-18T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54922
published_at	2026-04-09T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54923
published_at	2026-04-08T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54904
published_at	2026-04-04T12:55:00Z

value	0.00319
scoring_system	epss
scoring_elements	0.54873
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4140

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22738

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22745

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22747

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22748

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22751

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2039563
reference_id	2039563
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2039563

reference_url	https://security.gentoo.org/glsa/202202-03
reference_id	GLSA-202202-03
reference_type
scores
url	https://security.gentoo.org/glsa/202202-03

reference_url	https://security.gentoo.org/glsa/202208-14
reference_id	GLSA-202208-14
reference_type
scores
url	https://security.gentoo.org/glsa/202208-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_id

mfsa2022-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-01

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_id

mfsa2022-01

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:28:39Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-01/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_id

mfsa2022-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-02

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_id

mfsa2022-02

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:28:39Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-02/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_id

mfsa2022-03

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2022-03

reference_url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_id

mfsa2022-03

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:28:39Z/

url

https://www.mozilla.org/security/advisories/mfsa2022-03/

reference_url	https://access.redhat.com/errata/RHSA-2022:0123
reference_id	RHSA-2022:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0123

reference_url	https://access.redhat.com/errata/RHSA-2022:0124
reference_id	RHSA-2022:0124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0124

reference_url	https://access.redhat.com/errata/RHSA-2022:0125
reference_id	RHSA-2022:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0125

reference_url	https://access.redhat.com/errata/RHSA-2022:0126
reference_id	RHSA-2022:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0126

reference_url	https://access.redhat.com/errata/RHSA-2022:0127
reference_id	RHSA-2022:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0127

reference_url	https://access.redhat.com/errata/RHSA-2022:0128
reference_id	RHSA-2022:0128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0128

reference_url	https://access.redhat.com/errata/RHSA-2022:0129
reference_id	RHSA-2022:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0129

reference_url	https://access.redhat.com/errata/RHSA-2022:0130
reference_id	RHSA-2022:0130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0130

reference_url	https://access.redhat.com/errata/RHSA-2022:0131
reference_id	RHSA-2022:0131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0131

reference_url	https://access.redhat.com/errata/RHSA-2022:0132
reference_id	RHSA-2022:0132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0132

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1739923

reference_id

show_bug.cgi?id=1739923

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T15:28:39Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1739923

reference_url	https://usn.ubuntu.com/5229-1/
reference_id	USN-5229-1
reference_type
scores
url	https://usn.ubuntu.com/5229-1/

reference_url	https://usn.ubuntu.com/5246-1/
reference_id	USN-5246-1
reference_type
scores
url	https://usn.ubuntu.com/5246-1/

reference_url	https://usn.ubuntu.com/5248-1/
reference_id	USN-5248-1
reference_type
scores
url	https://usn.ubuntu.com/5248-1/

fixed_packages

url	pkg:deb/debian/firefox@96.0-1?distro=sid
purl	pkg:deb/debian/firefox@96.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

aliases CVE-2022-22742

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y7wn-9j43-jba3

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@96.0-1%3Fdistro=sid

Package Instance