Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Firefox@3.5.2

Type mozilla

Namespace

Name Firefox

Version 3.5.2

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.5.3

Latest_non_vulnerable_version 150.0.0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-c9mb-zya3-v3eq

vulnerability_id VCID-c9mb-zya3-v3eq

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2665

reference_id

reference_type

scores

value	0.01362
scoring_system	epss
scoring_elements	0.80201
published_at	2026-04-21T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80123
published_at	2026-04-01T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.8013
published_at	2026-04-02T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.8015
published_at	2026-04-04T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80139
published_at	2026-04-07T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80168
published_at	2026-04-08T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80175
published_at	2026-04-09T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80194
published_at	2026-04-11T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80179
published_at	2026-04-12T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.8017
published_at	2026-04-13T12:55:00Z

value	0.01362
scoring_system	epss
scoring_elements	0.80199
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2665
reference_id	CVE-2009-2665
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2665

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-46

reference_id

mfsa2009-46

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-46

fixed_packages

url	pkg:mozilla/Firefox@3.5.2
purl	pkg:mozilla/Firefox@3.5.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.2

aliases CVE-2009-2665

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c9mb-zya3-v3eq

url VCID-h2mg-qz8z-ekb9

vulnerability_id VCID-h2mg-qz8z-ekb9

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2662

reference_id

reference_type

scores

value	0.07076
scoring_system	epss
scoring_elements	0.91533
published_at	2026-04-21T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.9147
published_at	2026-04-01T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91477
published_at	2026-04-02T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91484
published_at	2026-04-04T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91492
published_at	2026-04-07T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91505
published_at	2026-04-08T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91511
published_at	2026-04-09T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91516
published_at	2026-04-13T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91518
published_at	2026-04-12T12:55:00Z

value	0.07076
scoring_system	epss
scoring_elements	0.91538
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2662

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2662
reference_id	CVE-2009-2662
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2662

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-45

reference_id

mfsa2009-45

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-45

fixed_packages

url	pkg:mozilla/Firefox@3.0.13
purl	pkg:mozilla/Firefox@3.0.13
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.0.13

url	pkg:mozilla/Firefox@3.5.2
purl	pkg:mozilla/Firefox@3.5.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.2

aliases CVE-2009-2662

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h2mg-qz8z-ekb9

url VCID-sapd-n7mr-eudc

vulnerability_id VCID-sapd-n7mr-eudc

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2470.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2470.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2470

reference_id

reference_type

scores

value	0.0266
scoring_system	epss
scoring_elements	0.85803
published_at	2026-04-21T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85713
published_at	2026-04-01T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85725
published_at	2026-04-02T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85744
published_at	2026-04-04T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.8575
published_at	2026-04-07T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85769
published_at	2026-04-08T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85779
published_at	2026-04-09T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85794
published_at	2026-04-11T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85791
published_at	2026-04-12T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85787
published_at	2026-04-13T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.85805
published_at	2026-04-16T12:55:00Z

value	0.0266
scoring_system	epss
scoring_elements	0.8581
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2470

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=512145
reference_id	512145
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=512145

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2470
reference_id	CVE-2009-2470
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2470

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-38

reference_id

mfsa2009-38

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-38

reference_url	https://access.redhat.com/errata/RHSA-2009:1162
reference_id	RHSA-2009:1162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1162

reference_url	https://access.redhat.com/errata/RHSA-2009:1163
reference_id	RHSA-2009:1163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1163

reference_url	https://access.redhat.com/errata/RHSA-2010:0153
reference_id	RHSA-2010:0153
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0153

reference_url	https://access.redhat.com/errata/RHSA-2010:0154
reference_id	RHSA-2010:0154
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0154

fixed_packages

url	pkg:mozilla/Firefox@3.0.12
purl	pkg:mozilla/Firefox@3.0.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.0.12

url	pkg:mozilla/Firefox@3.5.2
purl	pkg:mozilla/Firefox@3.5.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.2

aliases CVE-2009-2470

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sapd-n7mr-eudc

url VCID-vbtt-wzmx-f3bf

vulnerability_id VCID-vbtt-wzmx-f3bf

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2654.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2654.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2654

reference_id

reference_type

scores

value	0.13196
scoring_system	epss
scoring_elements	0.94155
published_at	2026-04-21T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94092
published_at	2026-04-01T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94102
published_at	2026-04-02T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94113
published_at	2026-04-04T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94116
published_at	2026-04-07T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94125
published_at	2026-04-08T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94129
published_at	2026-04-09T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94134
published_at	2026-04-13T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.94133
published_at	2026-04-12T12:55:00Z

value	0.13196
scoring_system	epss
scoring_elements	0.9415
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2654

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=521311
reference_id	521311
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=521311

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2654
reference_id	CVE-2009-2654
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2654

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/33103.html
reference_id	CVE-2009-2654;OSVDB-56717
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/33103.html

reference_url	https://www.securityfocus.com/bid/35803/info
reference_id	CVE-2009-2654;OSVDB-56717
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/35803/info

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-44

reference_id

mfsa2009-44

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-44

reference_url	https://access.redhat.com/errata/RHSA-2009:1430
reference_id	RHSA-2009:1430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1430

reference_url	https://access.redhat.com/errata/RHSA-2009:1431
reference_id	RHSA-2009:1431
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1431

reference_url	https://access.redhat.com/errata/RHSA-2009:1432
reference_id	RHSA-2009:1432
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1432

reference_url	https://usn.ubuntu.com/811-1/
reference_id	USN-811-1
reference_type
scores
url	https://usn.ubuntu.com/811-1/

fixed_packages

url	pkg:mozilla/Firefox@3.0.13
purl	pkg:mozilla/Firefox@3.0.13
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.0.13

url	pkg:mozilla/Firefox@3.5.2
purl	pkg:mozilla/Firefox@3.5.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.2

aliases CVE-2009-2654

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbtt-wzmx-f3bf

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.2

Package Instance