Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Thunderbird@8.0.0

Type mozilla

Namespace

Name Thunderbird

Version 8.0.0

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 9.0.0

Latest_non_vulnerable_version 149.0.2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-7am3-r7mc-5qbu

vulnerability_id VCID-7am3-r7mc-5qbu

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3648.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3648.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3648

reference_id

reference_type

scores

value	0.00338
scoring_system	epss
scoring_elements	0.5666
published_at	2026-04-21T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56543
published_at	2026-04-01T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56639
published_at	2026-04-07T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56661
published_at	2026-04-04T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56691
published_at	2026-04-08T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56696
published_at	2026-04-09T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56704
published_at	2026-04-11T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56679
published_at	2026-04-12T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56658
published_at	2026-04-13T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.5669
published_at	2026-04-16T12:55:00Z

value	0.00338
scoring_system	epss
scoring_elements	0.56688
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3648

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=751932
reference_id	751932
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=751932

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3648
reference_id	CVE-2011-3648
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3648

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-47

reference_id

mfsa2011-47

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-47

reference_url	https://access.redhat.com/errata/RHSA-2011:1437
reference_id	RHSA-2011:1437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1437

reference_url	https://access.redhat.com/errata/RHSA-2011:1438
reference_id	RHSA-2011:1438
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1438

reference_url	https://access.redhat.com/errata/RHSA-2011:1439
reference_id	RHSA-2011:1439
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1439

reference_url	https://access.redhat.com/errata/RHSA-2011:1440
reference_id	RHSA-2011:1440
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1440

reference_url	https://usn.ubuntu.com/1251-1/
reference_id	USN-1251-1
reference_type
scores
url	https://usn.ubuntu.com/1251-1/

reference_url	https://usn.ubuntu.com/1254-1/
reference_id	USN-1254-1
reference_type
scores
url	https://usn.ubuntu.com/1254-1/

reference_url	https://usn.ubuntu.com/1277-1/
reference_id	USN-1277-1
reference_type
scores
url	https://usn.ubuntu.com/1277-1/

reference_url	https://usn.ubuntu.com/1282-1/
reference_id	USN-1282-1
reference_type
scores
url	https://usn.ubuntu.com/1282-1/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.16
purl	pkg:mozilla/Thunderbird@3.1.16
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.16

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases CVE-2011-3648

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7am3-r7mc-5qbu

url VCID-dfca-nkc1-byca

vulnerability_id VCID-dfca-nkc1-byca

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3653

reference_id

reference_type

scores

value	0.00234
scoring_system	epss
scoring_elements	0.46288
published_at	2026-04-21T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46221
published_at	2026-04-01T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46263
published_at	2026-04-02T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46283
published_at	2026-04-04T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46229
published_at	2026-04-07T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46285
published_at	2026-04-08T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46286
published_at	2026-04-09T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.4631
published_at	2026-04-11T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46282
published_at	2026-04-12T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46291
published_at	2026-04-13T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46348
published_at	2026-04-16T12:55:00Z

value	0.00234
scoring_system	epss
scoring_elements	0.46344
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3653
reference_id	CVE-2011-3653
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3653

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-51

reference_id

mfsa2011-51

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-51

fixed_packages

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases CVE-2011-3653

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dfca-nkc1-byca

url VCID-rqrt-cz9c-47dm

vulnerability_id VCID-rqrt-cz9c-47dm

summary

references

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2986
reference_id	cve-2011-2986
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2986

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-29

reference_id

mfsa2011-29

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-31

reference_id

mfsa2011-31

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-31

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-33

reference_id

mfsa2011-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-50

reference_id

mfsa2011-50

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-50

fixed_packages

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases cve-2011-2986

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rqrt-cz9c-47dm

url VCID-xbdy-6pwc-f7ej

vulnerability_id VCID-xbdy-6pwc-f7ej

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3650.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3650.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3650

reference_id

reference_type

scores

value	0.01271
scoring_system	epss
scoring_elements	0.7955
published_at	2026-04-21T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79468
published_at	2026-04-01T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79475
published_at	2026-04-02T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79498
published_at	2026-04-04T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79485
published_at	2026-04-07T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79513
published_at	2026-04-08T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79521
published_at	2026-04-09T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79543
published_at	2026-04-11T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79526
published_at	2026-04-12T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79517
published_at	2026-04-13T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79547
published_at	2026-04-16T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79546
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3650

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=751933
reference_id	751933
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=751933

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3650
reference_id	CVE-2011-3650
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3650

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-49

reference_id

mfsa2011-49

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-49

reference_url	https://access.redhat.com/errata/RHSA-2011:1437
reference_id	RHSA-2011:1437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1437

reference_url	https://access.redhat.com/errata/RHSA-2011:1439
reference_id	RHSA-2011:1439
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1439

reference_url	https://usn.ubuntu.com/1251-1/
reference_id	USN-1251-1
reference_type
scores
url	https://usn.ubuntu.com/1251-1/

reference_url	https://usn.ubuntu.com/1254-1/
reference_id	USN-1254-1
reference_type
scores
url	https://usn.ubuntu.com/1254-1/

reference_url	https://usn.ubuntu.com/1277-1/
reference_id	USN-1277-1
reference_type
scores
url	https://usn.ubuntu.com/1277-1/

reference_url	https://usn.ubuntu.com/1282-1/
reference_id	USN-1282-1
reference_type
scores
url	https://usn.ubuntu.com/1282-1/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.16
purl	pkg:mozilla/Thunderbird@3.1.16
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.16

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases CVE-2011-3650

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xbdy-6pwc-f7ej

url VCID-xez2-agpv-mfg2

vulnerability_id VCID-xez2-agpv-mfg2

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3655

reference_id

reference_type

scores

value	0.00939
scoring_system	epss
scoring_elements	0.7625
published_at	2026-04-21T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76158
published_at	2026-04-01T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76164
published_at	2026-04-02T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76197
published_at	2026-04-04T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76177
published_at	2026-04-07T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.7621
published_at	2026-04-08T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76223
published_at	2026-04-13T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76249
published_at	2026-04-11T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76226
published_at	2026-04-12T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76264
published_at	2026-04-16T12:55:00Z

value	0.00939
scoring_system	epss
scoring_elements	0.76269
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3655

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3655
reference_id	CVE-2011-3655
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3655

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-52

reference_id

mfsa2011-52

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-52

reference_url	https://usn.ubuntu.com/1277-1/
reference_id	USN-1277-1
reference_type
scores
url	https://usn.ubuntu.com/1277-1/

reference_url	https://usn.ubuntu.com/1282-1/
reference_id	USN-1282-1
reference_type
scores
url	https://usn.ubuntu.com/1282-1/

fixed_packages

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases CVE-2011-3655

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xez2-agpv-mfg2

url VCID-y8c5-nj3y-ffb4

vulnerability_id VCID-y8c5-nj3y-ffb4

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3651

reference_id

reference_type

scores

value	0.03308
scoring_system	epss
scoring_elements	0.87258
published_at	2026-04-21T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87191
published_at	2026-04-01T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87201
published_at	2026-04-02T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87218
published_at	2026-04-04T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87215
published_at	2026-04-07T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87235
published_at	2026-04-08T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87242
published_at	2026-04-09T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87255
published_at	2026-04-11T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87249
published_at	2026-04-12T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87244
published_at	2026-04-13T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.8726
published_at	2026-04-16T12:55:00Z

value	0.03308
scoring_system	epss
scoring_elements	0.87264
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3651

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3651
reference_id	CVE-2011-3651
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3651

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-48

reference_id

mfsa2011-48

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2011-48

reference_url	https://usn.ubuntu.com/1277-1/
reference_id	USN-1277-1
reference_type
scores
url	https://usn.ubuntu.com/1277-1/

reference_url	https://usn.ubuntu.com/1282-1/
reference_id	USN-1282-1
reference_type
scores
url	https://usn.ubuntu.com/1282-1/

fixed_packages

url	pkg:mozilla/Thunderbird@8.0.0
purl	pkg:mozilla/Thunderbird@8.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

aliases CVE-2011-3651

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y8c5-nj3y-ffb4

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@8.0.0

Package Instance