Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:mozilla/Thunderbird@78.9.1
Typemozilla
Namespace
NameThunderbird
Version78.9.1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version78.10.0
Latest_non_vulnerable_version150.0.0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-3tmg-yvx8-5kdt
vulnerability_id VCID-3tmg-yvx8-5kdt
summary If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice's key with an invalid subkey, Thunderbird might subsequently attempt to use the invalid subkey, and will fail to send encrypted email to Alice.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23991.json
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23991.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23991
reference_id
reference_type
scores
0
value 0.00204
scoring_system epss
scoring_elements 0.42511
published_at 2026-04-01T12:55:00Z
1
value 0.00204
scoring_system epss
scoring_elements 0.42484
published_at 2026-04-24T12:55:00Z
2
value 0.00204
scoring_system epss
scoring_elements 0.42629
published_at 2026-04-16T12:55:00Z
3
value 0.00204
scoring_system epss
scoring_elements 0.42613
published_at 2026-04-18T12:55:00Z
4
value 0.00204
scoring_system epss
scoring_elements 0.42548
published_at 2026-04-21T12:55:00Z
5
value 0.00204
scoring_system epss
scoring_elements 0.42582
published_at 2026-04-02T12:55:00Z
6
value 0.00204
scoring_system epss
scoring_elements 0.42611
published_at 2026-04-04T12:55:00Z
7
value 0.00204
scoring_system epss
scoring_elements 0.42549
published_at 2026-04-07T12:55:00Z
8
value 0.00204
scoring_system epss
scoring_elements 0.42601
published_at 2026-04-08T12:55:00Z
9
value 0.00204
scoring_system epss
scoring_elements 0.42612
published_at 2026-04-09T12:55:00Z
10
value 0.00204
scoring_system epss
scoring_elements 0.42635
published_at 2026-04-11T12:55:00Z
11
value 0.00204
scoring_system epss
scoring_elements 0.42598
published_at 2026-04-12T12:55:00Z
12
value 0.00204
scoring_system epss
scoring_elements 0.42569
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23991
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949
15
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1948393
reference_id 1948393
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1948393
17
reference_url https://security.archlinux.org/AVG-1790
reference_id AVG-1790
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1790
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-13
reference_id mfsa2021-13
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-13
19
reference_url https://access.redhat.com/errata/RHSA-2021:1190
reference_id RHSA-2021:1190
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1190
20
reference_url https://access.redhat.com/errata/RHSA-2021:1192
reference_id RHSA-2021:1192
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1192
21
reference_url https://access.redhat.com/errata/RHSA-2021:1193
reference_id RHSA-2021:1193
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1193
22
reference_url https://access.redhat.com/errata/RHSA-2021:1201
reference_id RHSA-2021:1201
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1201
23
reference_url https://usn.ubuntu.com/4995-1/
reference_id USN-4995-1
reference_type
scores
url https://usn.ubuntu.com/4995-1/
24
reference_url https://usn.ubuntu.com/4995-2/
reference_id USN-4995-2
reference_type
scores
url https://usn.ubuntu.com/4995-2/
fixed_packages
0
url pkg:mozilla/Thunderbird@78.9.1
purl pkg:mozilla/Thunderbird@78.9.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@78.9.1
aliases CVE-2021-23991
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3tmg-yvx8-5kdt
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@78.9.1