Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Thunderbird%20ESR@17.0.8

Type mozilla

Namespace

Name Thunderbird ESR

Version 17.0.8

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 17.0.9

Latest_non_vulnerable_version 17.0.11

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1twv-z77f-yqfb

vulnerability_id VCID-1twv-z77f-yqfb

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1714.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1714.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1714

reference_id

reference_type

scores

value	0.01083
scoring_system	epss
scoring_elements	0.77897
published_at	2026-04-21T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77808
published_at	2026-04-01T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77815
published_at	2026-04-02T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77842
published_at	2026-04-04T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77824
published_at	2026-04-07T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77852
published_at	2026-04-08T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77857
published_at	2026-04-09T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77884
published_at	2026-04-11T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77868
published_at	2026-04-13T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77904
published_at	2026-04-16T12:55:00Z

value	0.01083
scoring_system	epss
scoring_elements	0.77903
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993604
reference_id	993604
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993604

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-73

reference_id

mfsa2013-73

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-73

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1714

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1twv-z77f-yqfb

url VCID-3f3t-kpkz-hfh2

vulnerability_id VCID-3f3t-kpkz-hfh2

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1710.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1710.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1710

reference_id

reference_type

scores

value	0.76472
scoring_system	epss
scoring_elements	0.98942
published_at	2026-04-21T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98927
published_at	2026-04-01T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98928
published_at	2026-04-02T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.9893
published_at	2026-04-04T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98932
published_at	2026-04-07T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98934
published_at	2026-04-09T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98936
published_at	2026-04-11T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98937
published_at	2026-04-13T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.9894
published_at	2026-04-16T12:55:00Z

value	0.76472
scoring_system	epss
scoring_elements	0.98941
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993602
reference_id	993602
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993602

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-69

reference_id

mfsa2013-69

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-69

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1710

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3f3t-kpkz-hfh2

url VCID-8tpd-hn73-byb1

vulnerability_id VCID-8tpd-hn73-byb1

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1713.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1713.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1713

reference_id

reference_type

scores

value	0.00466
scoring_system	epss
scoring_elements	0.64419
published_at	2026-04-21T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64303
published_at	2026-04-01T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64357
published_at	2026-04-02T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64386
published_at	2026-04-04T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64345
published_at	2026-04-07T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64394
published_at	2026-04-08T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64409
published_at	2026-04-12T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64421
published_at	2026-04-11T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.6438
published_at	2026-04-13T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64416
published_at	2026-04-16T12:55:00Z

value	0.00466
scoring_system	epss
scoring_elements	0.64427
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993603
reference_id	993603
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993603

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-72

reference_id

mfsa2013-72

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-72

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1713

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8tpd-hn73-byb1

url VCID-mue1-gvrf-27e2

vulnerability_id VCID-mue1-gvrf-27e2

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1709.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1709.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1709

reference_id

reference_type

scores

value	0.00521
scoring_system	epss
scoring_elements	0.66873
published_at	2026-04-21T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.6677
published_at	2026-04-01T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66809
published_at	2026-04-02T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66834
published_at	2026-04-04T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66807
published_at	2026-04-07T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66856
published_at	2026-04-08T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66869
published_at	2026-04-09T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66889
published_at	2026-04-11T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66875
published_at	2026-04-12T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66843
published_at	2026-04-13T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.66876
published_at	2026-04-16T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.6689
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993600
reference_id	993600
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993600

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-68

reference_id

mfsa2013-68

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-68

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1709

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mue1-gvrf-27e2

url VCID-nutc-y3ue-tkdd

vulnerability_id VCID-nutc-y3ue-tkdd

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1717.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1717.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1717

reference_id

reference_type

scores

value	0.0057
scoring_system	epss
scoring_elements	0.68641
published_at	2026-04-18T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68523
published_at	2026-04-01T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68541
published_at	2026-04-02T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.6856
published_at	2026-04-04T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68538
published_at	2026-04-07T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68589
published_at	2026-04-08T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68606
published_at	2026-04-09T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68632
published_at	2026-04-11T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68619
published_at	2026-04-21T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.6859
published_at	2026-04-13T12:55:00Z

value	0.0057
scoring_system	epss
scoring_elements	0.68629
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1717

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993605
reference_id	993605
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993605

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-75

reference_id

mfsa2013-75

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-75

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1717

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nutc-y3ue-tkdd

url VCID-p9xu-m3ac-ukf9

vulnerability_id VCID-p9xu-m3ac-ukf9

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1701.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1701.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1701

reference_id

reference_type

scores

value	0.03551
scoring_system	epss
scoring_elements	0.87704
published_at	2026-04-21T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87639
published_at	2026-04-01T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87649
published_at	2026-04-02T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87662
published_at	2026-04-04T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87663
published_at	2026-04-07T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87684
published_at	2026-04-08T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.8769
published_at	2026-04-09T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87702
published_at	2026-04-11T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87695
published_at	2026-04-12T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87693
published_at	2026-04-13T12:55:00Z

value	0.03551
scoring_system	epss
scoring_elements	0.87708
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=993598
reference_id	993598
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=993598

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-63

reference_id

mfsa2013-63

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-63

reference_url	https://access.redhat.com/errata/RHSA-2013:1140
reference_id	RHSA-2013:1140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1140

reference_url	https://access.redhat.com/errata/RHSA-2013:1142
reference_id	RHSA-2013:1142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1142

reference_url	https://usn.ubuntu.com/1924-1/
reference_id	USN-1924-1
reference_type
scores
url	https://usn.ubuntu.com/1924-1/

reference_url	https://usn.ubuntu.com/1925-1/
reference_id	USN-1925-1
reference_type
scores
url	https://usn.ubuntu.com/1925-1/

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1701

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p9xu-m3ac-ukf9

url VCID-rf4b-gj55-f3c2

vulnerability_id VCID-rf4b-gj55-f3c2

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, some of which may allow a remote user to
    execute arbitrary code.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1712

reference_id

reference_type

scores

value	0.00166
scoring_system	epss
scoring_elements	0.37668
published_at	2026-04-21T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37599
published_at	2026-04-01T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37781
published_at	2026-04-02T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37807
published_at	2026-04-04T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37685
published_at	2026-04-07T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37735
published_at	2026-04-08T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37748
published_at	2026-04-09T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37762
published_at	2026-04-11T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37727
published_at	2026-04-12T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.377
published_at	2026-04-13T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37749
published_at	2026-04-16T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37729
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1712

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1712
reference_id	CVE-2013-1712
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1712

reference_url	https://security.gentoo.org/glsa/201309-23
reference_id	GLSA-201309-23
reference_type
scores
url	https://security.gentoo.org/glsa/201309-23

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-71

reference_id

mfsa2013-71

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-71

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1712

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rf4b-gj55-f3c2

url VCID-yyxz-1qxq-bqhg

vulnerability_id VCID-yyxz-1qxq-bqhg

summary

Security researcher Seb Patane reported stack buffer
overflows in both the Maintenance Service and the Mozilla Updater when
unexpectedly long paths were encountered. A local attacker could pass these as
command-line arguments to the Maintenance Service to crash either program and
potentially lead to arbitrary code being run with the Administrator privileges
used by the Maintenance Service and inherited by the Updater.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1706

reference_id

reference_type

scores

value	0.00049
scoring_system	epss
scoring_elements	0.15241
published_at	2026-04-21T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15358
published_at	2026-04-01T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15397
published_at	2026-04-02T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15466
published_at	2026-04-04T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.1527
published_at	2026-04-07T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15357
published_at	2026-04-08T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15407
published_at	2026-04-09T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15369
published_at	2026-04-11T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.1533
published_at	2026-04-12T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15264
published_at	2026-04-13T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15178
published_at	2026-04-16T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15186
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1706
reference_id	CVE-2013-1706
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1706

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-66

reference_id

mfsa2013-66

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2013-66

fixed_packages

url	pkg:mozilla/Thunderbird%20ESR@17.0.8
purl	pkg:mozilla/Thunderbird%20ESR@17.0.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

aliases CVE-2013-1706

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yyxz-1qxq-bqhg

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@17.0.8

Package Instance