Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/6035?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "type": "ebuild", "namespace": "www-client", "name": "microsoft-edge", "version": "121.0.2277.83", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "121.0.6167.139", "latest_non_vulnerable_version": "141.0.7390.107", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58586?format=api", "vulnerability_id": "VCID-3ep3-ujhc-sud7", "summary": "Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0810", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22166", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22349", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2237", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22356", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0810" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0810", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0810" }, { "reference_url": "https://crbug.com/1496250", "reference_id": "1496250", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T15:36:11Z/" } ], "url": "https://crbug.com/1496250" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T15:36:11Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T15:36:11Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T15:36:11Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0810" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3ep3-ujhc-sud7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58868?format=api", "vulnerability_id": "VCID-6vnu-1u94-mka3", "summary": "Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0808", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57382", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57505", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57513", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00344", "scoring_system": "epss", "scoring_elements": "0.57499", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0808" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0808", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0808" }, { "reference_url": "https://crbug.com/1504936", "reference_id": "1504936", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/" } ], "url": "https://crbug.com/1504936" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-09T23:34:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0808" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6vnu-1u94-mka3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54208?format=api", "vulnerability_id": "VCID-8u9u-g38d-43dp", "summary": "Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1077", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00794", "scoring_system": "epss", "scoring_elements": "0.7438", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00794", "scoring_system": "epss", "scoring_elements": "0.74463", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00794", "scoring_system": "epss", "scoring_elements": "0.74466", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00794", "scoring_system": "epss", "scoring_elements": "0.74453", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1077" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1077", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1077" }, { "reference_url": "https://crbug.com/1511085", "reference_id": "1511085", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/" } ], "url": "https://crbug.com/1511085" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/", "reference_id": "NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html", "reference_id": "stable-channel-update-for-desktop_30.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/", "reference_id": "XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:24Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-1077" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8u9u-g38d-43dp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58744?format=api", "vulnerability_id": "VCID-9xvx-vp5b-rqby", "summary": "Inappropriate implementation in Downloads in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0805", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32559", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32739", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32762", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00134", "scoring_system": "epss", "scoring_elements": "0.32741", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0805" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0805", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0805" }, { "reference_url": "https://crbug.com/1514925", "reference_id": "1514925", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T16:32:45Z/" } ], "url": "https://crbug.com/1514925" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T16:32:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T16:32:45Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T16:32:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0805" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9xvx-vp5b-rqby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58386?format=api", "vulnerability_id": "VCID-a3kf-5ab9-ukek", "summary": "Inappropriate implementation in Autofill in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Low)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12769", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12856", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12874", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12864", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0809" }, { "reference_url": "https://crbug.com/1497985", "reference_id": "1497985", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:39:59Z/" } ], "url": "https://crbug.com/1497985" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:39:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:39:59Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-15T14:39:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0809" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a3kf-5ab9-ukek" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/54182?format=api", "vulnerability_id": "VCID-d12j-e39j-jbcv", "summary": "Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1060", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.5165", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51776", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51791", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00279", "scoring_system": "epss", "scoring_elements": "0.51779", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1060" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1060", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1060" }, { "reference_url": "https://crbug.com/1511567", "reference_id": "1511567", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/" } ], "url": "https://crbug.com/1511567" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/", "reference_id": "NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html", "reference_id": "stable-channel-update-for-desktop_30.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/", "reference_id": "XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-1060" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d12j-e39j-jbcv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58676?format=api", "vulnerability_id": "VCID-db9m-fnxv-ubhn", "summary": "Use after free in Web Audio in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0807", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.4209", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.42266", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.42276", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.42254", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0807" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0807", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0807" }, { "reference_url": "https://crbug.com/1505080", "reference_id": "1505080", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/" } ], "url": "https://crbug.com/1505080" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-06T05:00:18Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0807" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-db9m-fnxv-ubhn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58573?format=api", "vulnerability_id": "VCID-gvne-fnpb-4ycc", "summary": "Type confusion in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0518", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00139", "scoring_system": "epss", "scoring_elements": "0.33784", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00139", "scoring_system": "epss", "scoring_elements": "0.33963", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00139", "scoring_system": "epss", "scoring_elements": "0.33985", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00139", "scoring_system": "epss", "scoring_elements": "0.33962", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0518" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519" }, { "reference_url": "https://crbug.com/1507412", "reference_id": "1507412", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/" } ], "url": "https://crbug.com/1507412" }, { "reference_url": "https://security.gentoo.org/glsa/202402-14", "reference_id": "GLSA-202402-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-14" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/", "reference_id": "IIUBRVICICWREJQUVT67RS7E4PVZQ5RS", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html", "reference_id": "stable-channel-update-for-desktop_16.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/", "reference_id": "TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-17T04:00:16Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0518" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gvne-fnpb-4ycc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58999?format=api", "vulnerability_id": "VCID-gwu6-es67-pkcr", "summary": "Inappropriate implementation in Accessibility in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.56225", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.56349", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.5636", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00329", "scoring_system": "epss", "scoring_elements": "0.56345", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0812" }, { "reference_url": "https://crbug.com/1484394", "reference_id": "1484394", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:33Z/" } ], "url": "https://crbug.com/1484394" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:33Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-08T20:28:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0812" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gwu6-es67-pkcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58372?format=api", "vulnerability_id": "VCID-humv-qwen-5kce", "summary": "Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0519", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38781", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38966", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38976", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00175", "scoring_system": "epss", "scoring_elements": "0.38953", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0519" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519" }, { "reference_url": "https://crbug.com/1517354", "reference_id": "1517354", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/" } ], "url": "https://crbug.com/1517354" }, { "reference_url": "https://www.couchbase.com/alerts/", "reference_id": "alerts", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/" } ], "url": "https://www.couchbase.com/alerts/" }, { "reference_url": "https://security.gentoo.org/glsa/202402-14", "reference_id": "GLSA-202402-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-14" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/", "reference_id": "IIUBRVICICWREJQUVT67RS7E4PVZQ5RS", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html", "reference_id": "stable-channel-update-for-desktop_16.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/", "reference_id": "TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2024-01-18T20:18:46Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0519" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-humv-qwen-5kce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58533?format=api", "vulnerability_id": "VCID-rabw-b31k-bqch", "summary": "Out of bounds write in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0517", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.75479", "scoring_system": "epss", "scoring_elements": "0.98912", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.75479", "scoring_system": "epss", "scoring_elements": "0.98919", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.75479", "scoring_system": "epss", "scoring_elements": "0.98918", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.75479", "scoring_system": "epss", "scoring_elements": "0.98917", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0518" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519" }, { "reference_url": "https://crbug.com/1515930", "reference_id": "1515930", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T19:56:23Z/" } ], "url": "https://crbug.com/1515930" }, { "reference_url": "https://security.gentoo.org/glsa/202402-14", "reference_id": "GLSA-202402-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-14" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/", "reference_id": "IIUBRVICICWREJQUVT67RS7E4PVZQ5RS", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T19:56:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IIUBRVICICWREJQUVT67RS7E4PVZQ5RS/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html", "reference_id": "stable-channel-update-for-desktop_16.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T19:56:23Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/", "reference_id": "TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-13T19:56:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNN4SO5UI3U3Q6ASTVT6WMZ4723FYDLH/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0517" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rabw-b31k-bqch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58631?format=api", "vulnerability_id": "VCID-s73b-bzu5-jqgw", "summary": "Use after free in Reading Mode in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0813", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19046", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19211", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19234", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0006", "scoring_system": "epss", "scoring_elements": "0.19214", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0813" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0813", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0813" }, { "reference_url": "https://crbug.com/1477151", "reference_id": "1477151", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T14:32:54Z/" } ], "url": "https://crbug.com/1477151" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T14:32:54Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T14:32:54Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-24T14:32:54Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0813" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s73b-bzu5-jqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58250?format=api", "vulnerability_id": "VCID-svzt-eh7h-dfce", "summary": "Inappropriate implementation in Extensions API in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Low)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0811", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58917", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58927", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58912", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00363", "scoring_system": "epss", "scoring_elements": "0.58801", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0811" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0811" }, { "reference_url": "https://crbug.com/1494490", "reference_id": "1494490", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-16T18:31:12Z/" } ], "url": "https://crbug.com/1494490" }, { "reference_url": "http://packetstormsecurity.com/files/177172/Chrome-chrome.pageCapture.saveAsMHTML-Extension-API-Blocked-Origin-Bypass.html", "reference_id": "Chrome-chrome.pageCapture.saveAsMHTML-Extension-API-Blocked-Origin-Bypass.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-16T18:31:12Z/" } ], "url": "http://packetstormsecurity.com/files/177172/Chrome-chrome.pageCapture.saveAsMHTML-Extension-API-Blocked-Origin-Bypass.html" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-16T18:31:12Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-16T18:31:12Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-16T18:31:12Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0811" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-svzt-eh7h-dfce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58479?format=api", "vulnerability_id": "VCID-ufwj-fb56-tqbh", "summary": "Incorrect security UI in Payments in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially spoof security UI via a crafted HTML page. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0814", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00129", "scoring_system": "epss", "scoring_elements": "0.31837", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00129", "scoring_system": "epss", "scoring_elements": "0.32018", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00129", "scoring_system": "epss", "scoring_elements": "0.32039", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00129", "scoring_system": "epss", "scoring_elements": "0.32023", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0814" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0814", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0814" }, { "reference_url": "https://crbug.com/1463935", "reference_id": "1463935", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:35:12Z/" } ], "url": "https://crbug.com/1463935" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:35:12Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:35:12Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:35:12Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0814" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ufwj-fb56-tqbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/53877?format=api", "vulnerability_id": "VCID-wtxm-dh6d-v3gh", "summary": "Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1059", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68513", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68609", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68615", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00553", "scoring_system": "epss", "scoring_elements": "0.68602", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1059" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1059", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1059" }, { "reference_url": "https://crbug.com/1514777", "reference_id": "1514777", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/" } ], "url": "https://crbug.com/1514777" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/", "reference_id": "NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NEUXJY3YC3VGIJW2AOHL4NZ7ZK7BRYWY/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html", "reference_id": "stable-channel-update-for-desktop_30.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_30.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/", "reference_id": "XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-13T05:00:34Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XCVKRHRWPMITSVFBHQBSNXOVJAKT547Q/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-1059" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wtxm-dh6d-v3gh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58702?format=api", "vulnerability_id": "VCID-x1km-zdf7-qkdu", "summary": "Use after free in Passwords in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via specific UI interaction. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0026", "scoring_system": "epss", "scoring_elements": "0.49676", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0026", "scoring_system": "epss", "scoring_elements": "0.49818", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0026", "scoring_system": "epss", "scoring_elements": "0.49831", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0026", "scoring_system": "epss", "scoring_elements": "0.49813", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0806" }, { "reference_url": "https://crbug.com/1505176", "reference_id": "1505176", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-24T14:34:59Z/" } ], "url": "https://crbug.com/1505176" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-24T14:34:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-24T14:34:59Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-24T14:34:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0806" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x1km-zdf7-qkdu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58556?format=api", "vulnerability_id": "VCID-xfhr-6naj-fba4", "summary": "Insufficient policy enforcement in iOS Security UI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.2947", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29672", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29688", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00113", "scoring_system": "epss", "scoring_elements": "0.29671", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0804" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0804", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0804" }, { "reference_url": "https://crbug.com/1515137", "reference_id": "1515137", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T19:35:36Z/" } ], "url": "https://crbug.com/1515137" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" }, { "reference_url": "https://security.gentoo.org/glsa/202405-14", "reference_id": "GLSA-202405-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-14" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/", "reference_id": "MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T19:35:36Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMI6GXFONZV6HE3BPZO3AP6GUVQLG4JQ/" }, { "reference_url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html", "reference_id": "stable-channel-update-for-desktop_23.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T19:35:36Z/" } ], "url": "https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_23.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/", "reference_id": "VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T19:35:36Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VXDSGAFQD4BDB4IB2O4ZUSHC3JCVQEKC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0804" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xfhr-6naj-fba4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/176080?format=api", "vulnerability_id": "VCID-zqet-6fq2-jbdj", "summary": "Multiple vulnerabilities have been discovered in QtWebEngine, the worst of which could lead to remote code execution.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0333", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22573", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22768", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22781", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22761", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0333" }, { "reference_url": "https://security.gentoo.org/glsa/202402-14", "reference_id": "GLSA-202402-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-14" }, { "reference_url": "https://security.gentoo.org/glsa/202402-23", "reference_id": "GLSA-202402-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202402-23" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6035?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.2277.83", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }, { "url": "http://public2.vulnerablecode.io/api/packages/6036?format=api", "purl": "pkg:ebuild/www-client/microsoft-edge@121.0.6167.139", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.6167.139" } ], "aliases": [ "CVE-2024-0333" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zqet-6fq2-jbdj" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/microsoft-edge@121.0.2277.83" }