Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/thunderbird@128.13.0-3?arch=el8_8

Type rpm

Namespace redhat

Name thunderbird

Version 128.13.0-3

Qualifiers

arch	el8_8

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-43nm-4qjy-vfgj

vulnerability_id

VCID-43nm-4qjy-vfgj

summary

On arm64, a WASM br_table instruction with a lot of entries could lead to the label being too far from the instruction causing truncation and incorrect computation of the branch address.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8028.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8028.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8028

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.3286
published_at	2026-04-04T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32824
published_at	2026-04-02T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39396
published_at	2026-04-07T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39474
published_at	2026-04-16T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39422
published_at	2026-04-13T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39439
published_at	2026-04-12T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39478
published_at	2026-04-11T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39467
published_at	2026-04-09T12:55:00Z

value	0.00178
scoring_system	epss
scoring_elements	0.39452
published_at	2026-04-08T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.41977
published_at	2026-04-18T12:55:00Z

value	0.00199
scoring_system	epss
scoring_elements	0.41907
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8028

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8028
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8028

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382701
reference_id	2382701
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382701

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_id

mfsa2025-57

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_id

mfsa2025-57

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1971581

reference_id

show_bug.cgi?id=1971581

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:32:07Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1971581

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8028

risk_score

4.4

exploitability

0.5

weighted_severity

8.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-43nm-4qjy-vfgj

url

VCID-4byg-5gy3-kkff

vulnerability_id

VCID-4byg-5gy3-kkff

summary

The username:password part was not correctly stripped from URLs in CSP reports potentially leaking HTTP Basic Authentication credentials.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8031.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8031.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8031

reference_id

reference_type

scores

value	0.00131
scoring_system	epss
scoring_elements	0.32792
published_at	2026-04-04T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32756
published_at	2026-04-02T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32784
published_at	2026-04-08T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32736
published_at	2026-04-07T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32774
published_at	2026-04-12T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32748
published_at	2026-04-13T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32812
published_at	2026-04-11T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32789
published_at	2026-04-16T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.3281
published_at	2026-04-09T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33266
published_at	2026-04-18T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.3323
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8031

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8031
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8031

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382704
reference_id	2382704
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382704

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1971719

reference_id

show_bug.cgi?id=1971719

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:56:53Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1971719

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8031

risk_score

4.4

exploitability

0.5

weighted_severity

8.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-4byg-5gy3-kkff

url

VCID-ffd7-y29n-6fan

vulnerability_id

VCID-ffd7-y29n-6fan

summary

XSLT document loading did not correctly propagate the source document which bypassed its CSP.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8032.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8032.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8032

reference_id

reference_type

scores

value	0.00049
scoring_system	epss
scoring_elements	0.15213
published_at	2026-04-04T12:55:00Z

value	0.00049
scoring_system	epss
scoring_elements	0.15145
published_at	2026-04-02T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22285
published_at	2026-04-08T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22202
published_at	2026-04-07T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22319
published_at	2026-04-12T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.2226
published_at	2026-04-13T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.2236
published_at	2026-04-11T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.22265
published_at	2026-04-16T12:55:00Z

value	0.00073
scoring_system	epss
scoring_elements	0.2234
published_at	2026-04-09T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.24006
published_at	2026-04-18T12:55:00Z

value	0.00082
scoring_system	epss
scoring_elements	0.23988
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8032

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382718
reference_id	2382718
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382718

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1974407

reference_id

show_bug.cgi?id=1974407

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T13:55:17Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1974407

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8032

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-ffd7-y29n-6fan

url

VCID-jm7w-hqzq-tqde

vulnerability_id

VCID-jm7w-hqzq-tqde

summary

Thunderbird executed javascript: URLs when used in object and embed tags.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8029.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8029.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8029

reference_id

reference_type

scores

value	0.00042
scoring_system	epss
scoring_elements	0.12843
published_at	2026-04-04T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.12795
published_at	2026-04-02T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19614
published_at	2026-04-08T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19534
published_at	2026-04-07T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19622
published_at	2026-04-12T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19563
published_at	2026-04-13T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19671
published_at	2026-04-11T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19528
published_at	2026-04-16T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19666
published_at	2026-04-09T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21483
published_at	2026-04-18T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21452
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8029

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8029
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8029

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382720
reference_id	2382720
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382720

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1928021

reference_id

show_bug.cgi?id=1928021

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-23T14:29:37Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1928021

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8029

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-jm7w-hqzq-tqde

url

VCID-psc3-4ssv-wyb5

vulnerability_id

VCID-psc3-4ssv-wyb5

summary

On 64-bit platforms IonMonkey-JIT only wrote 32 bits of the 64-bit return value space on the stack. Baseline-JIT, however, read the entire 64 bits.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8027.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8027.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8027

reference_id

reference_type

scores

value	0.00075
scoring_system	epss
scoring_elements	0.2266
published_at	2026-04-02T12:55:00Z

value	0.00075
scoring_system	epss
scoring_elements	0.22705
published_at	2026-04-04T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.2961
published_at	2026-04-12T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29655
published_at	2026-04-11T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29578
published_at	2026-04-16T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29559
published_at	2026-04-13T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29653
published_at	2026-04-09T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29615
published_at	2026-04-08T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29552
published_at	2026-04-07T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31574
published_at	2026-04-21T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31606
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8027

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8027
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8027

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382707
reference_id	2382707
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382707

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_id

mfsa2025-57

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_id

mfsa2025-57

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1968423

reference_id

show_bug.cgi?id=1968423

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:42:23Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1968423

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8027

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-psc3-4ssv-wyb5

url

VCID-q9f4-zumy-wbfy

vulnerability_id

VCID-q9f4-zumy-wbfy

summary

Memory safety bugs present in Firefox ESR 115.25, Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8034.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8034.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8034

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25824
published_at	2026-04-04T12:55:00Z

value	0.00091
scoring_system	epss
scoring_elements	0.25781
published_at	2026-04-02T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.3145
published_at	2026-04-07T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.3149
published_at	2026-04-16T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31457
published_at	2026-04-13T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31494
published_at	2026-04-12T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31536
published_at	2026-04-11T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31531
published_at	2026-04-09T12:55:00Z

value	0.00123
scoring_system	epss
scoring_elements	0.31502
published_at	2026-04-08T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.33505
published_at	2026-04-18T12:55:00Z

value	0.00137
scoring_system	epss
scoring_elements	0.3347
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8034

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8034
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8034

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382711
reference_id	2382711
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382711

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_id

mfsa2025-57

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_id

mfsa2025-57

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1970422

reference_id

show_bug.cgi?id=1970422

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:30Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1970422

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8034

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-q9f4-zumy-wbfy

url

VCID-qz95-5z9e-7qb7

vulnerability_id

VCID-qz95-5z9e-7qb7

summary

The JavaScript engine did not handle closed generators correctly and it was possible to resume them leading to a nullptr deref.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8033.json

reference_id

reference_type

scores

value	3.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8033.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8033

reference_id

reference_type

scores

value	0.00078
scoring_system	epss
scoring_elements	0.23334
published_at	2026-04-04T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23291
published_at	2026-04-02T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30236
published_at	2026-04-07T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30257
published_at	2026-04-16T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30242
published_at	2026-04-13T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30291
published_at	2026-04-12T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30335
published_at	2026-04-11T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30331
published_at	2026-04-09T12:55:00Z

value	0.00116
scoring_system	epss
scoring_elements	0.30296
published_at	2026-04-08T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32331
published_at	2026-04-18T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32303
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8033
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8033

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382717
reference_id	2382717
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382717

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_id

mfsa2025-57

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-57

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_id

mfsa2025-57

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-57/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1973990

reference_id

show_bug.cgi?id=1973990

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-23T13:36:06Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1973990

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8033

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-qz95-5z9e-7qb7

url

VCID-vcnn-u8k9-8ubs

vulnerability_id

VCID-vcnn-u8k9-8ubs

summary

Memory safety bugs present in Firefox ESR 128.12, Thunderbird ESR 128.12, Firefox ESR 140.0, Thunderbird ESR 140.0, Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8035.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8035.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8035

reference_id

reference_type

scores

value	0.00068
scoring_system	epss
scoring_elements	0.21222
published_at	2026-04-04T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21167
published_at	2026-04-02T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25939
published_at	2026-04-08T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25869
published_at	2026-04-07T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25956
published_at	2026-04-12T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25897
published_at	2026-04-13T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.26001
published_at	2026-04-11T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.259
published_at	2026-04-16T12:55:00Z

value	0.00092
scoring_system	epss
scoring_elements	0.25991
published_at	2026-04-09T12:55:00Z

value	0.00103
scoring_system	epss
scoring_elements	0.2816
published_at	2026-04-18T12:55:00Z

value	0.00103
scoring_system	epss
scoring_elements	0.28116
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8035

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8035
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8035

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382703
reference_id	2382703
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382703

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1975961

reference_id

show_bug.cgi?id=1975961

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:33Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1975961

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8035

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-vcnn-u8k9-8ubs

url

VCID-yfwd-x224-3qe6

vulnerability_id

VCID-yfwd-x224-3qe6

summary

Insufficient escaping in the “Copy as cURL” feature could potentially be used to trick a user into executing unexpected code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8030.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8030.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8030

reference_id

reference_type

scores

value	0.00042
scoring_system	epss
scoring_elements	0.12843
published_at	2026-04-04T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.12795
published_at	2026-04-02T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19534
published_at	2026-04-07T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19528
published_at	2026-04-16T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19563
published_at	2026-04-13T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19622
published_at	2026-04-12T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19671
published_at	2026-04-11T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19666
published_at	2026-04-09T12:55:00Z

value	0.00063
scoring_system	epss
scoring_elements	0.19614
published_at	2026-04-08T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21452
published_at	2026-04-21T12:55:00Z

value	0.0007
scoring_system	epss
scoring_elements	0.21483
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8030

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8030
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8030

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2382710
reference_id	2382710
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2382710

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_id

mfsa2025-56

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-56

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_id

mfsa2025-56

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-56/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_id

mfsa2025-58

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-58

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_id

mfsa2025-58

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-58/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_id

mfsa2025-59

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-59

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_id

mfsa2025-59

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-59/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_id

mfsa2025-61

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-61

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_id

mfsa2025-61

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-61/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_id

mfsa2025-62

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-62

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_id

mfsa2025-62

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-62/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_id

mfsa2025-63

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-63

reference_url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_id

mfsa2025-63

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://www.mozilla.org/security/advisories/mfsa2025-63/

reference_url	https://access.redhat.com/errata/RHSA-2025:11747
reference_id	RHSA-2025:11747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11747

reference_url	https://access.redhat.com/errata/RHSA-2025:11748
reference_id	RHSA-2025:11748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11748

reference_url	https://access.redhat.com/errata/RHSA-2025:11797
reference_id	RHSA-2025:11797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11797

reference_url	https://access.redhat.com/errata/RHSA-2025:12044
reference_id	RHSA-2025:12044
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12044

reference_url	https://access.redhat.com/errata/RHSA-2025:12045
reference_id	RHSA-2025:12045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12045

reference_url	https://access.redhat.com/errata/RHSA-2025:12046
reference_id	RHSA-2025:12046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12046

reference_url	https://access.redhat.com/errata/RHSA-2025:12187
reference_id	RHSA-2025:12187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12187

reference_url	https://access.redhat.com/errata/RHSA-2025:12188
reference_id	RHSA-2025:12188
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12188

reference_url	https://access.redhat.com/errata/RHSA-2025:12278
reference_id	RHSA-2025:12278
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12278

reference_url	https://access.redhat.com/errata/RHSA-2025:12302
reference_id	RHSA-2025:12302
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12302

reference_url	https://access.redhat.com/errata/RHSA-2025:12353
reference_id	RHSA-2025:12353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12353

reference_url	https://access.redhat.com/errata/RHSA-2025:12360
reference_id	RHSA-2025:12360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12360

reference_url	https://access.redhat.com/errata/RHSA-2025:12361
reference_id	RHSA-2025:12361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12361

reference_url	https://access.redhat.com/errata/RHSA-2025:13645
reference_id	RHSA-2025:13645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13645

reference_url	https://access.redhat.com/errata/RHSA-2025:13646
reference_id	RHSA-2025:13646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13646

reference_url	https://access.redhat.com/errata/RHSA-2025:13647
reference_id	RHSA-2025:13647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13647

reference_url	https://access.redhat.com/errata/RHSA-2025:13648
reference_id	RHSA-2025:13648
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13648

reference_url	https://access.redhat.com/errata/RHSA-2025:13649
reference_id	RHSA-2025:13649
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13649

reference_url	https://access.redhat.com/errata/RHSA-2025:13650
reference_id	RHSA-2025:13650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13650

reference_url	https://access.redhat.com/errata/RHSA-2025:13651
reference_id	RHSA-2025:13651
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13651

reference_url	https://access.redhat.com/errata/RHSA-2025:13676
reference_id	RHSA-2025:13676
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13676

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1968414

reference_id

show_bug.cgi?id=1968414

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-24T03:55:29Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1968414

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

aliases

CVE-2025-8030

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-yfwd-x224-3qe6

Fixing_vulnerabilities

Risk_score 4.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@128.13.0-3%3Farch=el8_8

Package Instance