Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
Typedeb
Namespacedebian
Namethunderbird
Version1:128.7.0esr-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1:128.8.0esr-1~deb11u1
Latest_non_vulnerable_version1:140.9.1esr-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-1xcg-n9k4-tqc4
vulnerability_id VCID-1xcg-n9k4-tqc4
summary A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1011.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1011.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1011
reference_id
reference_type
scores
0
value 0.00211
scoring_system epss
scoring_elements 0.43675
published_at 2026-04-18T12:55:00Z
1
value 0.00211
scoring_system epss
scoring_elements 0.43598
published_at 2026-04-07T12:55:00Z
2
value 0.00211
scoring_system epss
scoring_elements 0.43642
published_at 2026-04-12T12:55:00Z
3
value 0.00211
scoring_system epss
scoring_elements 0.43673
published_at 2026-04-11T12:55:00Z
4
value 0.00211
scoring_system epss
scoring_elements 0.43653
published_at 2026-04-09T12:55:00Z
5
value 0.00211
scoring_system epss
scoring_elements 0.43649
published_at 2026-04-08T12:55:00Z
6
value 0.00211
scoring_system epss
scoring_elements 0.43662
published_at 2026-04-04T12:55:00Z
7
value 0.00211
scoring_system epss
scoring_elements 0.43685
published_at 2026-04-16T12:55:00Z
8
value 0.00211
scoring_system epss
scoring_elements 0.43624
published_at 2026-04-13T12:55:00Z
9
value 0.00211
scoring_system epss
scoring_elements 0.43637
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1011
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1011
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1011
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343756
reference_id 2343756
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343756
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T19:01:33Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T19:01:33Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T19:01:33Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T19:01:33Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
13
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
14
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
15
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
16
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
17
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
18
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
19
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
20
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
21
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
22
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
23
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
24
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
25
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
26
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
27
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
28
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
29
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
30
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
31
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
32
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1936454
reference_id show_bug.cgi?id=1936454
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T19:01:33Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1936454
33
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
34
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1011
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1xcg-n9k4-tqc4
1
url VCID-1zf8-qjts-9fbc
vulnerability_id VCID-1zf8-qjts-9fbc
summary Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which can lead to arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11704.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11704.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-11704
reference_id
reference_type
scores
0
value 0.002
scoring_system epss
scoring_elements 0.42072
published_at 2026-04-02T12:55:00Z
1
value 0.002
scoring_system epss
scoring_elements 0.42112
published_at 2026-04-16T12:55:00Z
2
value 0.002
scoring_system epss
scoring_elements 0.42101
published_at 2026-04-09T12:55:00Z
3
value 0.002
scoring_system epss
scoring_elements 0.42089
published_at 2026-04-08T12:55:00Z
4
value 0.002
scoring_system epss
scoring_elements 0.42061
published_at 2026-04-13T12:55:00Z
5
value 0.002
scoring_system epss
scoring_elements 0.42086
published_at 2026-04-12T12:55:00Z
6
value 0.002
scoring_system epss
scoring_elements 0.42099
published_at 2026-04-04T12:55:00Z
7
value 0.002
scoring_system epss
scoring_elements 0.42037
published_at 2026-04-07T12:55:00Z
8
value 0.002
scoring_system epss
scoring_elements 0.42124
published_at 2026-04-11T12:55:00Z
9
value 0.00271
scoring_system epss
scoring_elements 0.50639
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-11704
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11704
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11704
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2328942
reference_id 2328942
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2328942
5
reference_url https://security.gentoo.org/glsa/202501-10
reference_id GLSA-202501-10
reference_type
scores
url https://security.gentoo.org/glsa/202501-10
6
reference_url https://security.gentoo.org/glsa/202505-03
reference_id GLSA-202505-03
reference_type
scores
url https://security.gentoo.org/glsa/202505-03
7
reference_url https://security.gentoo.org/glsa/202509-02
reference_id GLSA-202509-02
reference_type
scores
url https://security.gentoo.org/glsa/202509-02
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2024-63
reference_id mfsa2024-63
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2024-63
9
reference_url https://www.mozilla.org/security/advisories/mfsa2024-63/
reference_id mfsa2024-63
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:21:47Z/
url https://www.mozilla.org/security/advisories/mfsa2024-63/
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2024-67
reference_id mfsa2024-67
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2024-67
11
reference_url https://www.mozilla.org/security/advisories/mfsa2024-67/
reference_id mfsa2024-67
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:21:47Z/
url https://www.mozilla.org/security/advisories/mfsa2024-67/
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
13
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:21:47Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
15
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:21:47Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
16
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1899402
reference_id show_bug.cgi?id=1899402
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-27T15:21:47Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1899402
17
reference_url https://usn.ubuntu.com/7134-1/
reference_id USN-7134-1
reference_type
scores
url https://usn.ubuntu.com/7134-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2024-11704
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1zf8-qjts-9fbc
2
url VCID-bzgb-mdsk-yua6
vulnerability_id VCID-bzgb-mdsk-yua6
summary An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1009.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1009.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1009
reference_id
reference_type
scores
0
value 0.00799
scoring_system epss
scoring_elements 0.74083
published_at 2026-04-18T12:55:00Z
1
value 0.00799
scoring_system epss
scoring_elements 0.74074
published_at 2026-04-16T12:55:00Z
2
value 0.00799
scoring_system epss
scoring_elements 0.74035
published_at 2026-04-13T12:55:00Z
3
value 0.00799
scoring_system epss
scoring_elements 0.74042
published_at 2026-04-12T12:55:00Z
4
value 0.00799
scoring_system epss
scoring_elements 0.74061
published_at 2026-04-11T12:55:00Z
5
value 0.00799
scoring_system epss
scoring_elements 0.74039
published_at 2026-04-09T12:55:00Z
6
value 0.00799
scoring_system epss
scoring_elements 0.74025
published_at 2026-04-08T12:55:00Z
7
value 0.00799
scoring_system epss
scoring_elements 0.73995
published_at 2026-04-02T12:55:00Z
8
value 0.00799
scoring_system epss
scoring_elements 0.73991
published_at 2026-04-07T12:55:00Z
9
value 0.00799
scoring_system epss
scoring_elements 0.7402
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1009
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1009
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1009
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343760
reference_id 2343760
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343760
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
reference_id mfsa2025-08
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-08/
reference_id mfsa2025-08
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://www.mozilla.org/security/advisories/mfsa2025-08/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
14
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
15
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
16
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
17
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
18
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
19
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
20
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
21
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
22
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
23
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
24
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
25
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
26
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
27
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
28
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
29
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
30
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
31
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
32
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
33
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
34
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1936613
reference_id show_bug.cgi?id=1936613
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-03-14T03:55:36Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1936613
35
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
36
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1009
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bzgb-mdsk-yua6
3
url VCID-cypj-1jsu-cbh5
vulnerability_id VCID-cypj-1jsu-cbh5
summary Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1016.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1016.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1016
reference_id
reference_type
scores
0
value 0.00313
scoring_system epss
scoring_elements 0.54501
published_at 2026-04-18T12:55:00Z
1
value 0.00313
scoring_system epss
scoring_elements 0.54498
published_at 2026-04-16T12:55:00Z
2
value 0.00313
scoring_system epss
scoring_elements 0.54459
published_at 2026-04-13T12:55:00Z
3
value 0.00313
scoring_system epss
scoring_elements 0.5448
published_at 2026-04-12T12:55:00Z
4
value 0.00313
scoring_system epss
scoring_elements 0.54497
published_at 2026-04-11T12:55:00Z
5
value 0.00313
scoring_system epss
scoring_elements 0.54486
published_at 2026-04-09T12:55:00Z
6
value 0.00313
scoring_system epss
scoring_elements 0.54492
published_at 2026-04-08T12:55:00Z
7
value 0.00313
scoring_system epss
scoring_elements 0.54449
published_at 2026-04-02T12:55:00Z
8
value 0.00313
scoring_system epss
scoring_elements 0.5444
published_at 2026-04-07T12:55:00Z
9
value 0.00313
scoring_system epss
scoring_elements 0.54471
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1016
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1016
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1016
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343752
reference_id 2343752
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343752
5
reference_url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1936601%2C1936844%2C1937694%2C1938469%2C1939583%2C1940994
reference_id buglist.cgi?bug_id=1936601%2C1936844%2C1937694%2C1938469%2C1939583%2C1940994
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1936601%2C1936844%2C1937694%2C1938469%2C1939583%2C1940994
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
7
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
reference_id mfsa2025-08
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
9
reference_url https://www.mozilla.org/security/advisories/mfsa2025-08/
reference_id mfsa2025-08
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-08/
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
11
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
13
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
15
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:03:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
16
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
17
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
18
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
19
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
20
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
21
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
22
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
23
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
24
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
25
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
26
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
27
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
28
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
29
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
30
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
31
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
32
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
33
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
34
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
35
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
36
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1016
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cypj-1jsu-cbh5
4
url VCID-f5w8-j656-akf4
vulnerability_id VCID-f5w8-j656-akf4
summary Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1017.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1017.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1017
reference_id
reference_type
scores
0
value 0.00308
scoring_system epss
scoring_elements 0.54057
published_at 2026-04-18T12:55:00Z
1
value 0.00308
scoring_system epss
scoring_elements 0.54053
published_at 2026-04-16T12:55:00Z
2
value 0.00308
scoring_system epss
scoring_elements 0.54013
published_at 2026-04-13T12:55:00Z
3
value 0.00308
scoring_system epss
scoring_elements 0.54031
published_at 2026-04-12T12:55:00Z
4
value 0.00308
scoring_system epss
scoring_elements 0.54049
published_at 2026-04-11T12:55:00Z
5
value 0.00308
scoring_system epss
scoring_elements 0.54002
published_at 2026-04-09T12:55:00Z
6
value 0.00308
scoring_system epss
scoring_elements 0.53948
published_at 2026-04-02T12:55:00Z
7
value 0.00308
scoring_system epss
scoring_elements 0.5395
published_at 2026-04-07T12:55:00Z
8
value 0.00308
scoring_system epss
scoring_elements 0.53975
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1017
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1017
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1017
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343748
reference_id 2343748
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343748
5
reference_url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1926256%2C1935984%2C1935471
reference_id buglist.cgi?bug_id=1926256%2C1935984%2C1935471
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:05:18Z/
url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1926256%2C1935984%2C1935471
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
7
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:05:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
9
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:05:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
11
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:05:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
13
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:05:18Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
14
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
15
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
16
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
17
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
18
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
19
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
20
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
21
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
22
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
23
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
24
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
25
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
26
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
27
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
28
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
29
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
30
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
31
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
32
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
33
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
34
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1017
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f5w8-j656-akf4
5
url VCID-hm7h-1na5-7bbx
vulnerability_id VCID-hm7h-1na5-7bbx
summary The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in the “Other” field of the Instant Messaging section. If another user imported the address book, clicking on the link could result in opening a web page inside Thunderbird, and that page could execute (unprivileged) JavaScript.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1015.json
reference_id
reference_type
scores
0
value 5.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1015.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1015
reference_id
reference_type
scores
0
value 0.25193
scoring_system epss
scoring_elements 0.962
published_at 2026-04-18T12:55:00Z
1
value 0.25193
scoring_system epss
scoring_elements 0.96177
published_at 2026-04-08T12:55:00Z
2
value 0.25193
scoring_system epss
scoring_elements 0.96163
published_at 2026-04-04T12:55:00Z
3
value 0.25193
scoring_system epss
scoring_elements 0.96166
published_at 2026-04-07T12:55:00Z
4
value 0.25193
scoring_system epss
scoring_elements 0.9618
published_at 2026-04-09T12:55:00Z
5
value 0.25193
scoring_system epss
scoring_elements 0.96156
published_at 2026-04-02T12:55:00Z
6
value 0.25193
scoring_system epss
scoring_elements 0.96195
published_at 2026-04-16T12:55:00Z
7
value 0.25193
scoring_system epss
scoring_elements 0.96186
published_at 2026-04-13T12:55:00Z
8
value 0.25193
scoring_system epss
scoring_elements 0.96183
published_at 2026-04-12T12:55:00Z
9
value 0.25193
scoring_system epss
scoring_elements 0.96184
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1015
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1015
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1015
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343759
reference_id 2343759
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343759
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:07:46Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:07:46Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
9
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
10
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
11
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
12
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
13
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
14
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
15
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
16
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
17
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
18
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1939458
reference_id show_bug.cgi?id=1939458
reference_type
scores
0
value 5.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:07:46Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1939458
19
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1015
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hm7h-1na5-7bbx
6
url VCID-m93r-91y4-xyaz
vulnerability_id VCID-m93r-91y4-xyaz
summary An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1010.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1010.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1010
reference_id
reference_type
scores
0
value 0.00344
scoring_system epss
scoring_elements 0.57032
published_at 2026-04-18T12:55:00Z
1
value 0.00344
scoring_system epss
scoring_elements 0.57036
published_at 2026-04-16T12:55:00Z
2
value 0.00344
scoring_system epss
scoring_elements 0.57007
published_at 2026-04-13T12:55:00Z
3
value 0.00344
scoring_system epss
scoring_elements 0.57031
published_at 2026-04-12T12:55:00Z
4
value 0.00344
scoring_system epss
scoring_elements 0.57051
published_at 2026-04-11T12:55:00Z
5
value 0.00344
scoring_system epss
scoring_elements 0.5704
published_at 2026-04-09T12:55:00Z
6
value 0.00344
scoring_system epss
scoring_elements 0.57038
published_at 2026-04-08T12:55:00Z
7
value 0.00344
scoring_system epss
scoring_elements 0.56989
published_at 2026-04-02T12:55:00Z
8
value 0.00344
scoring_system epss
scoring_elements 0.56987
published_at 2026-04-07T12:55:00Z
9
value 0.00344
scoring_system epss
scoring_elements 0.57012
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1010
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1010
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1010
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343750
reference_id 2343750
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343750
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
reference_id mfsa2025-08
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-08/
reference_id mfsa2025-08
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://www.mozilla.org/security/advisories/mfsa2025-08/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
14
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
15
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
16
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
17
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
18
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
19
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
20
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
21
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
22
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
23
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
24
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
25
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
26
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
27
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
28
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
29
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
30
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
31
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
32
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
33
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
34
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1936982
reference_id show_bug.cgi?id=1936982
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T18:47:57Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1936982
35
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
36
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1010
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m93r-91y4-xyaz
7
url VCID-ms9h-982a-pkdu
vulnerability_id VCID-ms9h-982a-pkdu
summary Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1014.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1014.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1014
reference_id
reference_type
scores
0
value 0.00212
scoring_system epss
scoring_elements 0.43823
published_at 2026-04-18T12:55:00Z
1
value 0.00212
scoring_system epss
scoring_elements 0.43812
published_at 2026-04-04T12:55:00Z
2
value 0.00212
scoring_system epss
scoring_elements 0.43786
published_at 2026-04-12T12:55:00Z
3
value 0.00212
scoring_system epss
scoring_elements 0.43818
published_at 2026-04-11T12:55:00Z
4
value 0.00212
scoring_system epss
scoring_elements 0.43798
published_at 2026-04-09T12:55:00Z
5
value 0.00212
scoring_system epss
scoring_elements 0.43795
published_at 2026-04-08T12:55:00Z
6
value 0.00212
scoring_system epss
scoring_elements 0.43744
published_at 2026-04-07T12:55:00Z
7
value 0.00212
scoring_system epss
scoring_elements 0.43788
published_at 2026-04-02T12:55:00Z
8
value 0.00212
scoring_system epss
scoring_elements 0.43831
published_at 2026-04-16T12:55:00Z
9
value 0.00212
scoring_system epss
scoring_elements 0.4377
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1014
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1014
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1014
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343764
reference_id 2343764
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343764
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T20:58:58Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T20:58:58Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T20:58:58Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T20:58:58Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
13
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
14
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
15
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
16
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
17
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
18
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
19
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
20
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
21
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
22
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
23
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
24
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
25
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
26
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
27
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
28
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
29
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
30
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
31
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
32
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1940804
reference_id show_bug.cgi?id=1940804
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T20:58:58Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1940804
33
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
34
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1014
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ms9h-982a-pkdu
8
url VCID-pj4h-ff45-e3ez
vulnerability_id VCID-pj4h-ff45-e3ez
summary A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1013.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1013.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1013
reference_id
reference_type
scores
0
value 0.0025
scoring_system epss
scoring_elements 0.48264
published_at 2026-04-18T12:55:00Z
1
value 0.0025
scoring_system epss
scoring_elements 0.48209
published_at 2026-04-04T12:55:00Z
2
value 0.0025
scoring_system epss
scoring_elements 0.48207
published_at 2026-04-12T12:55:00Z
3
value 0.0025
scoring_system epss
scoring_elements 0.48232
published_at 2026-04-11T12:55:00Z
4
value 0.0025
scoring_system epss
scoring_elements 0.48208
published_at 2026-04-09T12:55:00Z
5
value 0.0025
scoring_system epss
scoring_elements 0.48213
published_at 2026-04-08T12:55:00Z
6
value 0.0025
scoring_system epss
scoring_elements 0.4816
published_at 2026-04-07T12:55:00Z
7
value 0.0025
scoring_system epss
scoring_elements 0.48189
published_at 2026-04-02T12:55:00Z
8
value 0.0025
scoring_system epss
scoring_elements 0.4827
published_at 2026-04-16T12:55:00Z
9
value 0.0025
scoring_system epss
scoring_elements 0.48218
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1013
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1013
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1013
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343754
reference_id 2343754
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343754
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:11:49Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:11:49Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:11:49Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:11:49Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
13
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
14
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
15
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
16
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
17
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
18
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
19
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
20
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
21
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
22
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
23
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
24
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
25
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
26
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
27
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
28
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
29
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
30
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
31
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
32
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1932555
reference_id show_bug.cgi?id=1932555
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:11:49Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1932555
33
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
34
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1013
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pj4h-ff45-e3ez
9
url VCID-svy5-paub-2bhr
vulnerability_id VCID-svy5-paub-2bhr
summary Thunderbird displayed an incorrect sender address if the From field of an email used the invalid group name syntax that is described in CVE-2024-49040.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0510.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0510.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-0510
reference_id
reference_type
scores
0
value 0.00376
scoring_system epss
scoring_elements 0.59259
published_at 2026-04-18T12:55:00Z
1
value 0.00376
scoring_system epss
scoring_elements 0.59221
published_at 2026-04-08T12:55:00Z
2
value 0.00376
scoring_system epss
scoring_elements 0.59234
published_at 2026-04-09T12:55:00Z
3
value 0.00376
scoring_system epss
scoring_elements 0.59206
published_at 2026-04-04T12:55:00Z
4
value 0.00376
scoring_system epss
scoring_elements 0.5917
published_at 2026-04-07T12:55:00Z
5
value 0.00376
scoring_system epss
scoring_elements 0.59181
published_at 2026-04-02T12:55:00Z
6
value 0.00376
scoring_system epss
scoring_elements 0.59218
published_at 2026-04-13T12:55:00Z
7
value 0.00376
scoring_system epss
scoring_elements 0.59236
published_at 2026-04-12T12:55:00Z
8
value 0.00376
scoring_system epss
scoring_elements 0.59254
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-0510
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0510
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0510
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343762
reference_id 2343762
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343762
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:01:31Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:01:31Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
9
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
10
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
11
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
12
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
13
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
14
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
15
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
16
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
17
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
18
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1940570
reference_id show_bug.cgi?id=1940570
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-06T21:01:31Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1940570
19
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-0510
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-svy5-paub-2bhr
10
url VCID-ymu8-mjph-f7a4
vulnerability_id VCID-ymu8-mjph-f7a4
summary A race during concurrent delazification could have led to a use-after-free.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1012.json
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1012.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-1012
reference_id
reference_type
scores
0
value 0.00427
scoring_system epss
scoring_elements 0.62449
published_at 2026-04-18T12:55:00Z
1
value 0.00427
scoring_system epss
scoring_elements 0.62443
published_at 2026-04-16T12:55:00Z
2
value 0.00427
scoring_system epss
scoring_elements 0.62398
published_at 2026-04-13T12:55:00Z
3
value 0.00427
scoring_system epss
scoring_elements 0.62344
published_at 2026-04-07T12:55:00Z
4
value 0.00427
scoring_system epss
scoring_elements 0.62348
published_at 2026-04-02T12:55:00Z
5
value 0.00427
scoring_system epss
scoring_elements 0.62411
published_at 2026-04-09T12:55:00Z
6
value 0.00427
scoring_system epss
scoring_elements 0.62394
published_at 2026-04-08T12:55:00Z
7
value 0.00427
scoring_system epss
scoring_elements 0.62378
published_at 2026-04-04T12:55:00Z
8
value 0.00427
scoring_system epss
scoring_elements 0.6242
published_at 2026-04-12T12:55:00Z
9
value 0.00427
scoring_system epss
scoring_elements 0.6243
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-1012
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1012
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1012
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2343765
reference_id 2343765
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2343765
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
reference_id mfsa2025-07
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-07
6
reference_url https://www.mozilla.org/security/advisories/mfsa2025-07/
reference_id mfsa2025-07
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://www.mozilla.org/security/advisories/mfsa2025-07/
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
reference_id mfsa2025-08
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-08
8
reference_url https://www.mozilla.org/security/advisories/mfsa2025-08/
reference_id mfsa2025-08
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://www.mozilla.org/security/advisories/mfsa2025-08/
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
reference_id mfsa2025-09
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-09
10
reference_url https://www.mozilla.org/security/advisories/mfsa2025-09/
reference_id mfsa2025-09
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://www.mozilla.org/security/advisories/mfsa2025-09/
11
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
reference_id mfsa2025-10
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-10
12
reference_url https://www.mozilla.org/security/advisories/mfsa2025-10/
reference_id mfsa2025-10
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://www.mozilla.org/security/advisories/mfsa2025-10/
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
reference_id mfsa2025-11
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2025-11
14
reference_url https://www.mozilla.org/security/advisories/mfsa2025-11/
reference_id mfsa2025-11
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://www.mozilla.org/security/advisories/mfsa2025-11/
15
reference_url https://access.redhat.com/errata/RHSA-2025:1066
reference_id RHSA-2025:1066
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1066
16
reference_url https://access.redhat.com/errata/RHSA-2025:1132
reference_id RHSA-2025:1132
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1132
17
reference_url https://access.redhat.com/errata/RHSA-2025:1133
reference_id RHSA-2025:1133
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1133
18
reference_url https://access.redhat.com/errata/RHSA-2025:1135
reference_id RHSA-2025:1135
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1135
19
reference_url https://access.redhat.com/errata/RHSA-2025:1136
reference_id RHSA-2025:1136
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1136
20
reference_url https://access.redhat.com/errata/RHSA-2025:1137
reference_id RHSA-2025:1137
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1137
21
reference_url https://access.redhat.com/errata/RHSA-2025:1138
reference_id RHSA-2025:1138
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1138
22
reference_url https://access.redhat.com/errata/RHSA-2025:1139
reference_id RHSA-2025:1139
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1139
23
reference_url https://access.redhat.com/errata/RHSA-2025:1140
reference_id RHSA-2025:1140
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1140
24
reference_url https://access.redhat.com/errata/RHSA-2025:1184
reference_id RHSA-2025:1184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1184
25
reference_url https://access.redhat.com/errata/RHSA-2025:1283
reference_id RHSA-2025:1283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1283
26
reference_url https://access.redhat.com/errata/RHSA-2025:1292
reference_id RHSA-2025:1292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1292
27
reference_url https://access.redhat.com/errata/RHSA-2025:1317
reference_id RHSA-2025:1317
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1317
28
reference_url https://access.redhat.com/errata/RHSA-2025:1318
reference_id RHSA-2025:1318
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1318
29
reference_url https://access.redhat.com/errata/RHSA-2025:1319
reference_id RHSA-2025:1319
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1319
30
reference_url https://access.redhat.com/errata/RHSA-2025:1339
reference_id RHSA-2025:1339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1339
31
reference_url https://access.redhat.com/errata/RHSA-2025:1340
reference_id RHSA-2025:1340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1340
32
reference_url https://access.redhat.com/errata/RHSA-2025:1341
reference_id RHSA-2025:1341
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1341
33
reference_url https://access.redhat.com/errata/RHSA-2025:1348
reference_id RHSA-2025:1348
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1348
34
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1939710
reference_id show_bug.cgi?id=1939710
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-02-05T16:01:27Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1939710
35
reference_url https://usn.ubuntu.com/7263-1/
reference_id USN-7263-1
reference_type
scores
url https://usn.ubuntu.com/7263-1/
36
reference_url https://usn.ubuntu.com/7663-1/
reference_id USN-7663-1
reference_type
scores
url https://usn.ubuntu.com/7663-1/
fixed_packages
0
url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie
1
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb11u1%3Fdistro=trixie
2
url pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:128.7.0esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie
4
url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5dw5-vpt8-zqbz
1
vulnerability VCID-9ag7-z86d-nba9
2
vulnerability VCID-qbzp-euvv-q7c7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie
7
url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie
aliases CVE-2025-1012
risk_score 4.4
exploitability 0.5
weighted_severity 8.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ymu8-mjph-f7a4
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:128.7.0esr-1%3Fdistro=trixie