Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Firefox@35.0.0

Type mozilla

Namespace

Name Firefox

Version 35.0.0

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 36.0.0

Latest_non_vulnerable_version 150.0.0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-32gy-xghg-g3gr

vulnerability_id VCID-32gy-xghg-g3gr

summary

Security researcher Nils discovered a mechanism to break out
of the Gecko Media
Plugin (GMP) sandbox on Windows systems. The GMP sandbox is currently only
used to host h.264 video playback using the OpenH264 plugin but is being
developed to host other other media plugins. This bug would allow an attacker to
escape or bypass the GMP sandbox if another exploitable bug is found in a GMP
media plugin which allowed them to compromise the GMP process.
This bugs only affects Windows systems. OS X and Linux systems
are not affected by it.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8643

reference_id

reference_type

scores

value	0.01348
scoring_system	epss
scoring_elements	0.80115
published_at	2026-04-21T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80036
published_at	2026-04-01T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80044
published_at	2026-04-02T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80065
published_at	2026-04-04T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80054
published_at	2026-04-07T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80082
published_at	2026-04-08T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.8009
published_at	2026-04-09T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80109
published_at	2026-04-11T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80093
published_at	2026-04-12T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80085
published_at	2026-04-13T12:55:00Z

value	0.01348
scoring_system	epss
scoring_elements	0.80114
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8643

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8643
reference_id	CVE-2014-8643
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8643

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-07

reference_id

mfsa2015-07

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-07

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8643

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-32gy-xghg-g3gr

url VCID-9bat-kqxd-gkg2

vulnerability_id VCID-9bat-kqxd-gkg2

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8634.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8634.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8634

reference_id

reference_type

scores

value	0.01748
scoring_system	epss
scoring_elements	0.82586
published_at	2026-04-21T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82474
published_at	2026-04-01T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82488
published_at	2026-04-02T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82506
published_at	2026-04-04T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82502
published_at	2026-04-07T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82529
published_at	2026-04-08T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82536
published_at	2026-04-09T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82555
published_at	2026-04-11T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.8255
published_at	2026-04-12T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82545
published_at	2026-04-13T12:55:00Z

value	0.01748
scoring_system	epss
scoring_elements	0.82582
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180962
reference_id	1180962
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180962

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-01

reference_id

mfsa2015-01

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-01

reference_url	https://access.redhat.com/errata/RHSA-2015:0046
reference_id	RHSA-2015:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0046

reference_url	https://access.redhat.com/errata/RHSA-2015:0047
reference_id	RHSA-2015:0047
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0047

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

reference_url	https://usn.ubuntu.com/2460-1/
reference_id	USN-2460-1
reference_type
scores
url	https://usn.ubuntu.com/2460-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8634

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9bat-kqxd-gkg2

url VCID-b3n2-ujct-nbcy

vulnerability_id VCID-b3n2-ujct-nbcy

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, the worst of which may allow user-assisted
    execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8642.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8642

reference_id

reference_type

scores

value	0.00659
scoring_system	epss
scoring_elements	0.71099
published_at	2026-04-21T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71015
published_at	2026-04-01T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71025
published_at	2026-04-02T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71043
published_at	2026-04-04T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71017
published_at	2026-04-07T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.7106
published_at	2026-04-08T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71074
published_at	2026-04-09T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71098
published_at	2026-04-11T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71082
published_at	2026-04-12T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71065
published_at	2026-04-13T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71112
published_at	2026-04-16T12:55:00Z

value	0.00659
scoring_system	epss
scoring_elements	0.71119
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8642

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180974
reference_id	1180974
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180974

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8642
reference_id	CVE-2014-8642
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8642

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-08

reference_id

mfsa2015-08

reference_type

scores

value	low
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-08

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8642

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b3n2-ujct-nbcy

url VCID-f1nz-g5h1-m7dm

vulnerability_id VCID-f1nz-g5h1-m7dm

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8638.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8638.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8638

reference_id

reference_type

scores

value	0.00496
scoring_system	epss
scoring_elements	0.65834
published_at	2026-04-21T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65713
published_at	2026-04-01T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65763
published_at	2026-04-02T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65793
published_at	2026-04-04T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65758
published_at	2026-04-07T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65811
published_at	2026-04-08T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65822
published_at	2026-04-09T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65842
published_at	2026-04-11T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65828
published_at	2026-04-12T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65798
published_at	2026-04-13T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65832
published_at	2026-04-16T12:55:00Z

value	0.00496
scoring_system	epss
scoring_elements	0.65846
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8638

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180966
reference_id	1180966
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180966

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-03

reference_id

mfsa2015-03

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-03

reference_url	https://access.redhat.com/errata/RHSA-2015:0046
reference_id	RHSA-2015:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0046

reference_url	https://access.redhat.com/errata/RHSA-2015:0047
reference_id	RHSA-2015:0047
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0047

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

reference_url	https://usn.ubuntu.com/2460-1/
reference_id	USN-2460-1
reference_type
scores
url	https://usn.ubuntu.com/2460-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8638

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f1nz-g5h1-m7dm

url VCID-g8ft-s7wx-n7ea

vulnerability_id VCID-g8ft-s7wx-n7ea

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8639.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8639.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8639

reference_id

reference_type

scores

value	0.01837
scoring_system	epss
scoring_elements	0.8298
published_at	2026-04-21T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82873
published_at	2026-04-01T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82889
published_at	2026-04-02T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82902
published_at	2026-04-04T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82898
published_at	2026-04-07T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82924
published_at	2026-04-08T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82931
published_at	2026-04-09T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82947
published_at	2026-04-11T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82942
published_at	2026-04-12T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82938
published_at	2026-04-13T12:55:00Z

value	0.01837
scoring_system	epss
scoring_elements	0.82976
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8639

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180967
reference_id	1180967
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180967

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-04

reference_id

mfsa2015-04

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-04

reference_url	https://access.redhat.com/errata/RHSA-2015:0046
reference_id	RHSA-2015:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0046

reference_url	https://access.redhat.com/errata/RHSA-2015:0047
reference_id	RHSA-2015:0047
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0047

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

reference_url	https://usn.ubuntu.com/2460-1/
reference_id	USN-2460-1
reference_type
scores
url	https://usn.ubuntu.com/2460-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8639

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g8ft-s7wx-n7ea

url VCID-gx4v-yve4-gbga

vulnerability_id VCID-gx4v-yve4-gbga

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, the worst of which may allow user-assisted
    execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8640.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8640.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8640

reference_id

reference_type

scores

value	0.0114
scoring_system	epss
scoring_elements	0.78438
published_at	2026-04-11T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.78359
published_at	2026-04-01T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.78366
published_at	2026-04-02T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.78397
published_at	2026-04-04T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.7838
published_at	2026-04-07T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.78407
published_at	2026-04-08T12:55:00Z

value	0.0114
scoring_system	epss
scoring_elements	0.78412
published_at	2026-04-09T12:55:00Z

value	0.01542
scoring_system	epss
scoring_elements	0.81411
published_at	2026-04-21T12:55:00Z

value	0.01542
scoring_system	epss
scoring_elements	0.81381
published_at	2026-04-12T12:55:00Z

value	0.01542
scoring_system	epss
scoring_elements	0.81374
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8640

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180970
reference_id	1180970
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180970

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8640
reference_id	CVE-2014-8640
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8640

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-05

reference_id

mfsa2015-05

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-05

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8640

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gx4v-yve4-gbga

url VCID-r1ju-8ww8-yygz

vulnerability_id VCID-r1ju-8ww8-yygz

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, the worst of which may allow user-assisted
    execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8637.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8637.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8637

reference_id

reference_type

scores

value	0.00489
scoring_system	epss
scoring_elements	0.65566
published_at	2026-04-21T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.6545
published_at	2026-04-01T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65499
published_at	2026-04-02T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65527
published_at	2026-04-04T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65491
published_at	2026-04-07T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65544
published_at	2026-04-08T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65555
published_at	2026-04-09T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65574
published_at	2026-04-11T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65561
published_at	2026-04-12T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65533
published_at	2026-04-13T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65569
published_at	2026-04-16T12:55:00Z

value	0.00489
scoring_system	epss
scoring_elements	0.65582
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8637

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180964
reference_id	1180964
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180964

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8637
reference_id	CVE-2014-8637
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8637

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-02

reference_id

mfsa2015-02

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-02

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8637

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r1ju-8ww8-yygz

url VCID-r8f9-h598-7bg5

vulnerability_id VCID-r8f9-h598-7bg5

summary security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8641.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8641.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8641

reference_id

reference_type

scores

value	0.01522
scoring_system	epss
scoring_elements	0.81298
published_at	2026-04-18T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81197
published_at	2026-04-01T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81205
published_at	2026-04-02T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81228
published_at	2026-04-07T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81256
published_at	2026-04-08T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81261
published_at	2026-04-09T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81282
published_at	2026-04-11T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81268
published_at	2026-04-12T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.8126
published_at	2026-04-13T12:55:00Z

value	0.01522
scoring_system	epss
scoring_elements	0.81297
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8641

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8638

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8639

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8641

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180973
reference_id	1180973
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180973

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-06

reference_id

mfsa2015-06

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-06

reference_url	https://access.redhat.com/errata/RHSA-2015:0046
reference_id	RHSA-2015:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0046

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8641

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r8f9-h598-7bg5

url VCID-sme4-gu3c-kkf3

vulnerability_id VCID-sme4-gu3c-kkf3

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, and SeaMonkey, the worst of which may allow user-assisted
    execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8636.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8636.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8636

reference_id

reference_type

scores

value	0.83612
scoring_system	epss
scoring_elements	0.99289
published_at	2026-04-18T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99278
published_at	2026-04-01T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99279
published_at	2026-04-02T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99281
published_at	2026-04-04T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99284
published_at	2026-04-07T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99285
published_at	2026-04-08T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99286
published_at	2026-04-11T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99288
published_at	2026-04-12T12:55:00Z

value	0.83612
scoring_system	epss
scoring_elements	0.99287
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8636

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1180977
reference_id	1180977
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1180977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8636
reference_id	CVE-2014-8636
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8636

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/36480.rb
reference_id	CVE-2014-8636;OSVDB-117005
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/36480.rb

reference_url	https://security.gentoo.org/glsa/201504-01
reference_id	GLSA-201504-01
reference_type
scores
url	https://security.gentoo.org/glsa/201504-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-09

reference_id

mfsa2015-09

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-09

reference_url	https://usn.ubuntu.com/2458-1/
reference_id	USN-2458-1
reference_type
scores
url	https://usn.ubuntu.com/2458-1/

fixed_packages

url	pkg:mozilla/Firefox@35.0.0
purl	pkg:mozilla/Firefox@35.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

aliases CVE-2014-8636

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sme4-gu3c-kkf3

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0

Package Instance