Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Firefox@3.5.1

Type mozilla

Namespace

Name Firefox

Version 3.5.1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.5.2

Latest_non_vulnerable_version 150.0.1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-3ep8-9hjn-dfhq

vulnerability_id VCID-3ep8-9hjn-dfhq

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2477.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2477.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2477

reference_id

reference_type

scores

value	0.83306
scoring_system	epss
scoring_elements	0.99275
published_at	2026-04-29T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99263
published_at	2026-04-01T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99264
published_at	2026-04-02T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99267
published_at	2026-04-04T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.9927
published_at	2026-04-08T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99271
published_at	2026-04-13T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99272
published_at	2026-04-12T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99273
published_at	2026-04-21T12:55:00Z

value	0.83306
scoring_system	epss
scoring_elements	0.99274
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2477

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=511228
reference_id	511228
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=511228

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2477
reference_id	CVE-2009-2477
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2477

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40936.html
reference_id	CVE-2009-2477
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/40936.html

reference_url	https://www.myhackerhouse.com/naenara-browser-3-5-exploit-jackrabbit/
reference_id	CVE-2009-2477
reference_type	exploit
scores
url	https://www.myhackerhouse.com/naenara-browser-3-5-exploit-jackrabbit/

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/16299.rb
reference_id	CVE-2009-2477;OSVDB-55846
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/16299.rb

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/9214.pl
reference_id	CVE-2009-2477;OSVDB-55846
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/9214.pl

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-41

reference_id

mfsa2009-41

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-41

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/9137.html
reference_id	OSVDB-55932;CVE-2009-2478;OSVDB-55846;CVE-2009-2477
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/9137.html

fixed_packages

url	pkg:mozilla/Firefox@3.5.1
purl	pkg:mozilla/Firefox@3.5.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.1

aliases CVE-2009-2477

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3ep8-9hjn-dfhq

url VCID-q4rx-j8ep-a7fk

vulnerability_id VCID-q4rx-j8ep-a7fk

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2467.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2467.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2467

reference_id

reference_type

scores

value	0.05189
scoring_system	epss
scoring_elements	0.89944
published_at	2026-04-29T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89879
published_at	2026-04-01T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89883
published_at	2026-04-02T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89895
published_at	2026-04-04T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.899
published_at	2026-04-07T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89916
published_at	2026-04-08T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89922
published_at	2026-04-09T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89929
published_at	2026-04-11T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89927
published_at	2026-04-12T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.8992
published_at	2026-04-13T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89934
published_at	2026-04-16T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89936
published_at	2026-04-18T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89931
published_at	2026-04-21T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89947
published_at	2026-04-24T12:55:00Z

value	0.05189
scoring_system	epss
scoring_elements	0.89946
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2467

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=512137
reference_id	512137
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=512137

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2467
reference_id	CVE-2009-2467
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2467

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-35

reference_id

mfsa2009-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-35

reference_url	https://access.redhat.com/errata/RHSA-2009:1162
reference_id	RHSA-2009:1162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1162

reference_url	https://usn.ubuntu.com/798-1/
reference_id	USN-798-1
reference_type
scores
url	https://usn.ubuntu.com/798-1/

fixed_packages

url	pkg:mozilla/Firefox@3.0.12
purl	pkg:mozilla/Firefox@3.0.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.0.12

url	pkg:mozilla/Firefox@3.5.1
purl	pkg:mozilla/Firefox@3.5.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.1

aliases CVE-2009-2467

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q4rx-j8ep-a7fk

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.1

Package Instance