Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/firefox@87.0-1?distro=sid

Type deb

Namespace debian

Name firefox

Version 87.0-1

Qualifiers

distro	sid

Subpath

Is_vulnerable false

Next_non_vulnerable_version 88.0-1

Latest_non_vulnerable_version 150.0-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-2zxp-rnge-5ufc

vulnerability_id VCID-2zxp-rnge-5ufc

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23983

reference_id

reference_type

scores

value	0.00366
scoring_system	epss
scoring_elements	0.58615
published_at	2026-04-21T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58488
published_at	2026-04-01T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.5862
published_at	2026-04-12T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.586
published_at	2026-04-13T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58633
published_at	2026-04-16T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58573
published_at	2026-04-02T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58594
published_at	2026-04-04T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58564
published_at	2026-04-07T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58616
published_at	2026-04-08T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58623
published_at	2026-04-09T12:55:00Z

value	0.00366
scoring_system	epss
scoring_elements	0.58639
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23983

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23983

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2zxp-rnge-5ufc

url VCID-52qs-bkd7-eygr

vulnerability_id VCID-52qs-bkd7-eygr

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23988

reference_id

reference_type

scores

value	0.00323
scoring_system	epss
scoring_elements	0.55421
published_at	2026-04-21T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55279
published_at	2026-04-01T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55442
published_at	2026-04-18T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.5542
published_at	2026-04-12T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55438
published_at	2026-04-16T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55378
published_at	2026-04-02T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55402
published_at	2026-04-13T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.5538
published_at	2026-04-07T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55431
published_at	2026-04-08T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55432
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23988

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23988

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-52qs-bkd7-eygr

url VCID-5z46-a21q-4yd3

vulnerability_id VCID-5z46-a21q-4yd3

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23986

reference_id

reference_type

scores

value	0.00053
scoring_system	epss
scoring_elements	0.16634
published_at	2026-04-21T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16616
published_at	2026-04-01T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.1665
published_at	2026-04-13T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16587
published_at	2026-04-16T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16595
published_at	2026-04-18T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16789
published_at	2026-04-02T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16846
published_at	2026-04-04T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.1663
published_at	2026-04-07T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16715
published_at	2026-04-08T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16769
published_at	2026-04-09T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16749
published_at	2026-04-11T12:55:00Z

value	0.00053
scoring_system	epss
scoring_elements	0.16707
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23986

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23986

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5z46-a21q-4yd3

url VCID-a2x3-x693-gqdf

vulnerability_id VCID-a2x3-x693-gqdf

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23984.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23984.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23984

reference_id

reference_type

scores

value	0.00214
scoring_system	epss
scoring_elements	0.4387
published_at	2026-04-21T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43915
published_at	2026-04-09T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43934
published_at	2026-04-11T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43901
published_at	2026-04-12T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43885
published_at	2026-04-13T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43947
published_at	2026-04-16T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43938
published_at	2026-04-18T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43867
published_at	2026-04-01T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43911
published_at	2026-04-02T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43933
published_at	2026-04-04T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43863
published_at	2026-04-07T12:55:00Z

value	0.00214
scoring_system	epss
scoring_elements	0.43913
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1942786
reference_id	1942786
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1942786

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url

https://security.archlinux.org/AVG-1729

reference_id

AVG-1729

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1729

reference_url	https://security.gentoo.org/glsa/202104-09
reference_id	GLSA-202104-09
reference_type
scores
url	https://security.gentoo.org/glsa/202104-09

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_id

mfsa2021-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_id

mfsa2021-12

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_url	https://access.redhat.com/errata/RHSA-2021:0989
reference_id	RHSA-2021:0989
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0989

reference_url	https://access.redhat.com/errata/RHSA-2021:0990
reference_id	RHSA-2021:0990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0990

reference_url	https://access.redhat.com/errata/RHSA-2021:0991
reference_id	RHSA-2021:0991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0991

reference_url	https://access.redhat.com/errata/RHSA-2021:0992
reference_id	RHSA-2021:0992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0992

reference_url	https://access.redhat.com/errata/RHSA-2021:0993
reference_id	RHSA-2021:0993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0993

reference_url	https://access.redhat.com/errata/RHSA-2021:0994
reference_id	RHSA-2021:0994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0994

reference_url	https://access.redhat.com/errata/RHSA-2021:0995
reference_id	RHSA-2021:0995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0995

reference_url	https://access.redhat.com/errata/RHSA-2021:0996
reference_id	RHSA-2021:0996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0996

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

reference_url	https://usn.ubuntu.com/4995-1/
reference_id	USN-4995-1
reference_type
scores
url	https://usn.ubuntu.com/4995-1/

reference_url	https://usn.ubuntu.com/4995-2/
reference_id	USN-4995-2
reference_type
scores
url	https://usn.ubuntu.com/4995-2/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23984

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a2x3-x693-gqdf

url VCID-dy9a-9mc6-hfbc

vulnerability_id VCID-dy9a-9mc6-hfbc

summary A transient execution vulnerability, named Floating Point Value Injection (FPVI) allowed an attacker to leak arbitrary memory addresses and may have also enabled JIT type confusion attacks. (A related vulnerability, Speculative Code Store Bypass (SCSB), did not affect Firefox.)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-29955

reference_id

reference_type

scores

value	0.00884
scoring_system	epss
scoring_elements	0.75452
published_at	2026-04-21T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75457
published_at	2026-04-16T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75463
published_at	2026-04-18T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75361
published_at	2026-04-01T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75365
published_at	2026-04-02T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75397
published_at	2026-04-04T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75377
published_at	2026-04-07T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75419
published_at	2026-04-08T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75429
published_at	2026-04-09T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75449
published_at	2026-04-11T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75427
published_at	2026-04-12T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75416
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_id

mfsa2021-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-29955

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dy9a-9mc6-hfbc

url VCID-gjvm-8v8y-d7c5

vulnerability_id VCID-gjvm-8v8y-d7c5

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23982.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23982.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23982

reference_id

reference_type

scores

value	0.0012
scoring_system	epss
scoring_elements	0.30925
published_at	2026-04-21T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.31031
published_at	2026-04-09T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.31038
published_at	2026-04-11T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.30994
published_at	2026-04-12T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.30949
published_at	2026-04-13T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.3098
published_at	2026-04-16T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.3096
published_at	2026-04-18T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.30953
published_at	2026-04-01T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.31081
published_at	2026-04-02T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.31128
published_at	2026-04-04T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.30944
published_at	2026-04-07T12:55:00Z

value	0.0012
scoring_system	epss
scoring_elements	0.31002
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1942785
reference_id	1942785
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1942785

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url

https://security.archlinux.org/AVG-1729

reference_id

AVG-1729

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1729

reference_url	https://security.gentoo.org/glsa/202104-09
reference_id	GLSA-202104-09
reference_type
scores
url	https://security.gentoo.org/glsa/202104-09

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_id

mfsa2021-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_id

mfsa2021-12

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_url	https://access.redhat.com/errata/RHSA-2021:0989
reference_id	RHSA-2021:0989
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0989

reference_url	https://access.redhat.com/errata/RHSA-2021:0990
reference_id	RHSA-2021:0990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0990

reference_url	https://access.redhat.com/errata/RHSA-2021:0991
reference_id	RHSA-2021:0991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0991

reference_url	https://access.redhat.com/errata/RHSA-2021:0992
reference_id	RHSA-2021:0992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0992

reference_url	https://access.redhat.com/errata/RHSA-2021:0993
reference_id	RHSA-2021:0993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0993

reference_url	https://access.redhat.com/errata/RHSA-2021:0994
reference_id	RHSA-2021:0994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0994

reference_url	https://access.redhat.com/errata/RHSA-2021:0995
reference_id	RHSA-2021:0995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0995

reference_url	https://access.redhat.com/errata/RHSA-2021:0996
reference_id	RHSA-2021:0996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0996

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

reference_url	https://usn.ubuntu.com/4995-1/
reference_id	USN-4995-1
reference_type
scores
url	https://usn.ubuntu.com/4995-1/

reference_url	https://usn.ubuntu.com/4995-2/
reference_id	USN-4995-2
reference_type
scores
url	https://usn.ubuntu.com/4995-2/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23982

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gjvm-8v8y-d7c5

url VCID-jp3p-pdhs-uya7

vulnerability_id VCID-jp3p-pdhs-uya7

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23985

reference_id

reference_type

scores

value	0.01333
scoring_system	epss
scoring_elements	0.79995
published_at	2026-04-21T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79915
published_at	2026-04-01T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79964
published_at	2026-04-13T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79991
published_at	2026-04-16T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79992
published_at	2026-04-18T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79921
published_at	2026-04-02T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79942
published_at	2026-04-04T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79931
published_at	2026-04-07T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.7996
published_at	2026-04-08T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79969
published_at	2026-04-09T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79988
published_at	2026-04-11T12:55:00Z

value	0.01333
scoring_system	epss
scoring_elements	0.79972
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23985

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23985

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jp3p-pdhs-uya7

url VCID-kk9k-mpvr-7kh9

vulnerability_id VCID-kk9k-mpvr-7kh9

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23981.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23981.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23981

reference_id

reference_type

scores

value	0.00369
scoring_system	epss
scoring_elements	0.5879
published_at	2026-04-21T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58794
published_at	2026-04-09T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58813
published_at	2026-04-11T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58795
published_at	2026-04-12T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58775
published_at	2026-04-13T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58808
published_at	2026-04-16T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58812
published_at	2026-04-18T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58662
published_at	2026-04-01T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58746
published_at	2026-04-02T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58767
published_at	2026-04-04T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58735
published_at	2026-04-07T12:55:00Z

value	0.00369
scoring_system	epss
scoring_elements	0.58787
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1942783
reference_id	1942783
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1942783

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url

https://security.archlinux.org/AVG-1729

reference_id

AVG-1729

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1729

reference_url	https://security.gentoo.org/glsa/202104-09
reference_id	GLSA-202104-09
reference_type
scores
url	https://security.gentoo.org/glsa/202104-09

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_id

mfsa2021-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_id

mfsa2021-12

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_url	https://access.redhat.com/errata/RHSA-2021:0989
reference_id	RHSA-2021:0989
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0989

reference_url	https://access.redhat.com/errata/RHSA-2021:0990
reference_id	RHSA-2021:0990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0990

reference_url	https://access.redhat.com/errata/RHSA-2021:0991
reference_id	RHSA-2021:0991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0991

reference_url	https://access.redhat.com/errata/RHSA-2021:0992
reference_id	RHSA-2021:0992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0992

reference_url	https://access.redhat.com/errata/RHSA-2021:0993
reference_id	RHSA-2021:0993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0993

reference_url	https://access.redhat.com/errata/RHSA-2021:0994
reference_id	RHSA-2021:0994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0994

reference_url	https://access.redhat.com/errata/RHSA-2021:0995
reference_id	RHSA-2021:0995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0995

reference_url	https://access.redhat.com/errata/RHSA-2021:0996
reference_id	RHSA-2021:0996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0996

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

reference_url	https://usn.ubuntu.com/4995-1/
reference_id	USN-4995-1
reference_type
scores
url	https://usn.ubuntu.com/4995-1/

reference_url	https://usn.ubuntu.com/4995-2/
reference_id	USN-4995-2
reference_type
scores
url	https://usn.ubuntu.com/4995-2/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23981

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kk9k-mpvr-7kh9

url VCID-uv8b-n94e-budc

vulnerability_id VCID-uv8b-n94e-budc

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23987.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23987.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23987

reference_id

reference_type

scores

value	0.0025
scoring_system	epss
scoring_elements	0.48258
published_at	2026-04-21T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48246
published_at	2026-04-09T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48271
published_at	2026-04-11T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48245
published_at	2026-04-12T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48257
published_at	2026-04-13T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48309
published_at	2026-04-16T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48303
published_at	2026-04-18T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48187
published_at	2026-04-01T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48224
published_at	2026-04-02T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48244
published_at	2026-04-04T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48196
published_at	2026-04-07T12:55:00Z

value	0.0025
scoring_system	epss
scoring_elements	0.48252
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23981

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23984

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23987

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4127

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1942787
reference_id	1942787
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1942787

reference_url

https://security.archlinux.org/AVG-1728

reference_id

AVG-1728

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1728

reference_url

https://security.archlinux.org/AVG-1729

reference_id

AVG-1729

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1729

reference_url	https://security.gentoo.org/glsa/202104-09
reference_id	GLSA-202104-09
reference_type
scores
url	https://security.gentoo.org/glsa/202104-09

reference_url	https://security.gentoo.org/glsa/202104-10
reference_id	GLSA-202104-10
reference_type
scores
url	https://security.gentoo.org/glsa/202104-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_id

mfsa2021-10

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_id

mfsa2021-11

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-11

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_id

mfsa2021-12

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2021-12

reference_url	https://access.redhat.com/errata/RHSA-2021:0989
reference_id	RHSA-2021:0989
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0989

reference_url	https://access.redhat.com/errata/RHSA-2021:0990
reference_id	RHSA-2021:0990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0990

reference_url	https://access.redhat.com/errata/RHSA-2021:0991
reference_id	RHSA-2021:0991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0991

reference_url	https://access.redhat.com/errata/RHSA-2021:0992
reference_id	RHSA-2021:0992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0992

reference_url	https://access.redhat.com/errata/RHSA-2021:0993
reference_id	RHSA-2021:0993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0993

reference_url	https://access.redhat.com/errata/RHSA-2021:0994
reference_id	RHSA-2021:0994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0994

reference_url	https://access.redhat.com/errata/RHSA-2021:0995
reference_id	RHSA-2021:0995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0995

reference_url	https://access.redhat.com/errata/RHSA-2021:0996
reference_id	RHSA-2021:0996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0996

reference_url	https://usn.ubuntu.com/4893-1/
reference_id	USN-4893-1
reference_type
scores
url	https://usn.ubuntu.com/4893-1/

reference_url	https://usn.ubuntu.com/4995-1/
reference_id	USN-4995-1
reference_type
scores
url	https://usn.ubuntu.com/4995-1/

reference_url	https://usn.ubuntu.com/4995-2/
reference_id	USN-4995-2
reference_type
scores
url	https://usn.ubuntu.com/4995-2/

fixed_packages

url	pkg:deb/debian/firefox@87.0-1?distro=sid
purl	pkg:deb/debian/firefox@87.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0-1?distro=sid
purl	pkg:deb/debian/firefox@149.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0-1%3Fdistro=sid

url	pkg:deb/debian/firefox@149.0.2-1?distro=sid
purl	pkg:deb/debian/firefox@149.0.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@149.0.2-1%3Fdistro=sid

url	pkg:deb/debian/firefox@150.0-1?distro=sid
purl	pkg:deb/debian/firefox@150.0-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid

aliases CVE-2021-23987

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uv8b-n94e-budc

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@87.0-1%3Fdistro=sid

Package Instance