Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/thunderbird@102.10.0-2?arch=el8_1

Type rpm

Namespace redhat

Name thunderbird

Version 102.10.0-2

Qualifiers

arch	el8_1

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-5hzf-gdbj-8ud8

vulnerability_id

VCID-5hzf-gdbj-8ud8

summary

Double Free
There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1999.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1999.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-1999

reference_id

reference_type

scores

value	0.00362
scoring_system	epss
scoring_elements	0.5832
published_at	2026-04-16T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59242
published_at	2026-04-11T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59206
published_at	2026-04-13T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59194
published_at	2026-04-04T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59158
published_at	2026-04-07T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59209
published_at	2026-04-08T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59222
published_at	2026-04-09T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.5917
published_at	2026-04-02T12:55:00Z

value	0.00376
scoring_system	epss
scoring_elements	0.59224
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-1999

reference_url

https://chromium.googlesource.com/webm/libwebp

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:14:09Z/

url

https://chromium.googlesource.com/webm/libwebp

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035371
reference_id	1035371
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035371

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186102
reference_id	2186102
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186102

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-1999
reference_id	CVE-2023-1999
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-1999

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url	https://access.redhat.com/errata/RHSA-2023:2072
reference_id	RHSA-2023:2072
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2072

reference_url	https://access.redhat.com/errata/RHSA-2023:2073
reference_id	RHSA-2023:2073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2073

reference_url	https://access.redhat.com/errata/RHSA-2023:2075
reference_id	RHSA-2023:2075
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2075

reference_url	https://access.redhat.com/errata/RHSA-2023:2076
reference_id	RHSA-2023:2076
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2076

reference_url	https://access.redhat.com/errata/RHSA-2023:2077
reference_id	RHSA-2023:2077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2077

reference_url	https://access.redhat.com/errata/RHSA-2023:2078
reference_id	RHSA-2023:2078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2078

reference_url	https://access.redhat.com/errata/RHSA-2023:2084
reference_id	RHSA-2023:2084
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2084

reference_url	https://access.redhat.com/errata/RHSA-2023:2085
reference_id	RHSA-2023:2085
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2085

reference_url	https://usn.ubuntu.com/6078-1/
reference_id	USN-6078-1
reference_type
scores
url	https://usn.ubuntu.com/6078-1/

reference_url	https://usn.ubuntu.com/6078-2/
reference_id	USN-6078-2
reference_type
scores
url	https://usn.ubuntu.com/6078-2/

fixed_packages

aliases

CVE-2023-1999

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-5hzf-gdbj-8ud8

url

VCID-73wu-d7y3-7bge

vulnerability_id

VCID-73wu-d7y3-7bge

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1945.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1945.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-1945

reference_id

reference_type

scores

value	0.00138
scoring_system	epss
scoring_elements	0.33906
published_at	2026-04-16T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33868
published_at	2026-04-13T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33976
published_at	2026-04-02T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33892
published_at	2026-04-12T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33934
published_at	2026-04-11T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33936
published_at	2026-04-09T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33904
published_at	2026-04-08T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.34007
published_at	2026-04-04T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33861
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186109
reference_id	2186109
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186109

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:55:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:55:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1777588

reference_id

show_bug.cgi?id=1777588

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T16:55:03Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1777588

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-1945

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-73wu-d7y3-7bge

url

VCID-7b8k-mgs3-cud5

vulnerability_id

VCID-7b8k-mgs3-cud5

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29550.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29550.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29550

reference_id

reference_type

scores

value	0.0019
scoring_system	epss
scoring_elements	0.40896
published_at	2026-04-16T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40853
published_at	2026-04-13T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.4088
published_at	2026-04-02T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40872
published_at	2026-04-12T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40907
published_at	2026-04-11T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40891
published_at	2026-04-09T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40884
published_at	2026-04-08T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40908
published_at	2026-04-04T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40835
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29550

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186111
reference_id	2186111
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186111

reference_url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1720594%2C1812498%2C1814217%2C1818357%2C1751945%2C1818762%2C1819493%2C1820389%2C1820602%2C1821448%2C1822413%2C1824828

reference_id

buglist.cgi?bug_id=1720594%2C1812498%2C1814217%2C1818357%2C1751945%2C1818762%2C1819493%2C1820389%2C1820602%2C1821448%2C1822413%2C1824828

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-10T19:20:01Z/

url

https://bugzilla.mozilla.org/buglist.cgi?bug_id=1720594%2C1812498%2C1814217%2C1818357%2C1751945%2C1818762%2C1819493%2C1820389%2C1820602%2C1821448%2C1822413%2C1824828

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-10T19:20:01Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-10T19:20:01Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-10T19:20:01Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

reference_url	https://usn.ubuntu.com/6120-1/
reference_id	USN-6120-1
reference_type
scores
url	https://usn.ubuntu.com/6120-1/

fixed_packages

aliases

CVE-2023-29550

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-7b8k-mgs3-cud5

url

VCID-a8gt-y9j7-zuhs

vulnerability_id

VCID-a8gt-y9j7-zuhs

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29548.json

reference_id

reference_type

scores

value	3.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29548.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29548

reference_id

reference_type

scores

value	0.00138
scoring_system	epss
scoring_elements	0.33821
published_at	2026-04-16T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33783
published_at	2026-04-13T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.3389
published_at	2026-04-02T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33807
published_at	2026-04-12T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33849
published_at	2026-04-11T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33851
published_at	2026-04-09T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33817
published_at	2026-04-08T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33922
published_at	2026-04-04T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33775
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186110
reference_id	2186110
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186110

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:16:05Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:16:05Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:16:05Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1822754

reference_id

show_bug.cgi?id=1822754

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:16:05Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1822754

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

reference_url	https://usn.ubuntu.com/6120-1/
reference_id	USN-6120-1
reference_type
scores
url	https://usn.ubuntu.com/6120-1/

fixed_packages

aliases

CVE-2023-29548

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-a8gt-y9j7-zuhs

url

VCID-as8g-vnyj-u7hk

vulnerability_id

VCID-as8g-vnyj-u7hk

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29539.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29539.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29539

reference_id

reference_type

scores

value	0.00209
scoring_system	epss
scoring_elements	0.43239
published_at	2026-04-07T12:55:00Z

value	0.00209
scoring_system	epss
scoring_elements	0.43305
published_at	2026-04-09T12:55:00Z

value	0.00209
scoring_system	epss
scoring_elements	0.43291
published_at	2026-04-08T12:55:00Z

value	0.00209
scoring_system	epss
scoring_elements	0.43302
published_at	2026-04-04T12:55:00Z

value	0.00209
scoring_system	epss
scoring_elements	0.43273
published_at	2026-04-02T12:55:00Z

value	0.00209
scoring_system	epss
scoring_elements	0.43326
published_at	2026-04-11T12:55:00Z

value	0.00221
scoring_system	epss
scoring_elements	0.44772
published_at	2026-04-13T12:55:00Z

value	0.00221
scoring_system	epss
scoring_elements	0.44825
published_at	2026-04-16T12:55:00Z

value	0.00221
scoring_system	epss
scoring_elements	0.4477
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186105
reference_id	2186105
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186105

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:43:44Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:43:44Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:43:44Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1784348

reference_id

show_bug.cgi?id=1784348

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:43:44Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1784348

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-29539

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-as8g-vnyj-u7hk

url

VCID-bc7q-srps-sfd7

vulnerability_id

VCID-bc7q-srps-sfd7

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29541.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29541.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29541

reference_id

reference_type

scores

value	0.002
scoring_system	epss
scoring_elements	0.42108
published_at	2026-04-16T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42057
published_at	2026-04-13T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42068
published_at	2026-04-02T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42082
published_at	2026-04-12T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.4212
published_at	2026-04-11T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42097
published_at	2026-04-09T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42085
published_at	2026-04-08T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42095
published_at	2026-04-04T12:55:00Z

value	0.002
scoring_system	epss
scoring_elements	0.42033
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186106
reference_id	2186106
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186106

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:08:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:08:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:08:52Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1810191

reference_id

show_bug.cgi?id=1810191

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T19:08:52Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1810191

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-29541

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-bc7q-srps-sfd7

url

VCID-eu3v-wzxr-pbd3

vulnerability_id

VCID-eu3v-wzxr-pbd3

summary

Certain malformed OpenPGP messages could trigger incorrect parsing of PKESK/SKESK packets due to a bug in the Ribose RNP library used by Thunderbird up to version 102.9.1, which would cause the Thunderbird user interface to hang. The issue was discovered using Google's oss-fuzz.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29479.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29479.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29479

reference_id

reference_type

scores

value	0.00095
scoring_system	epss
scoring_elements	0.2654
published_at	2026-04-02T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26396
published_at	2026-04-16T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.2639
published_at	2026-04-13T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26494
published_at	2026-04-11T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26368
published_at	2026-04-07T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26437
published_at	2026-04-08T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26488
published_at	2026-04-09T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26448
published_at	2026-04-12T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26585
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034558
reference_id	1034558
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034558

reference_url

https://www.rnpgp.org/blog/2023-04-13-rnp-release-0-16-3/

reference_id

2023-04-13-rnp-release-0-16-3

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:00:39Z/

url

https://www.rnpgp.org/blog/2023-04-13-rnp-release-0-16-3/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186735
reference_id	2186735
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186735

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://cve.ribose.com/advisories/ra-2023-04-11/

reference_id

ra-2023-04-11

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:00:39Z/

url

https://cve.ribose.com/advisories/ra-2023-04-11/

reference_url

https://open.ribose.com/advisories/ra-2023-04-11/

reference_id

ra-2023-04-11

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-04T21:00:39Z/

url

https://open.ribose.com/advisories/ra-2023-04-11/

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-29479

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-eu3v-wzxr-pbd3

url

VCID-fs3v-8fsn-uygj

vulnerability_id

VCID-fs3v-8fsn-uygj

summary

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 24.0.0 events sent with special strings in key places can temporarily disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data safely. Note that the matrix-js-sdk can appear to be operating normally but be excluding or corrupting runtime data presented to the consumer. This vulnerability is distinct from GHSA-rfv9-x7hh-xc32 which covers a similar issue. The issue has been patched in matrix-js-sdk 24.0.0 and users are advised to upgrade. There are no known workarounds for this vulnerability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28427.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28427.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28427

reference_id

reference_type

scores

value	0.00359
scoring_system	epss
scoring_elements	0.58092
published_at	2026-04-13T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58112
published_at	2026-04-12T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58135
published_at	2026-04-11T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58119
published_at	2026-04-09T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58116
published_at	2026-04-08T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58061
published_at	2026-04-07T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58086
published_at	2026-04-04T12:55:00Z

value	0.00359
scoring_system	epss
scoring_elements	0.58065
published_at	2026-04-02T12:55:00Z

value	0.00435
scoring_system	epss
scoring_elements	0.62906
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/matrix-org/matrix-js-sdk

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/matrix-org/matrix-js-sdk

reference_url

https://lists.debian.org/debian-lts-announce/2023/04/msg00027.html

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-18T20:03:37Z/

url

https://lists.debian.org/debian-lts-announce/2023/04/msg00027.html

reference_url

https://matrix.org/blog/2023/03/28/security-releases-matrix-js-sdk-24-0-0-and-matrix-react-sdk-3-69-0

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-18T20:03:37Z/

url

https://matrix.org/blog/2023/03/28/security-releases-matrix-js-sdk-24-0-0-and-matrix-react-sdk-3-69-0

reference_url

https://security.gentoo.org/glsa/202305-36

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-18T20:03:37Z/

url

https://security.gentoo.org/glsa/202305-36

reference_url

https://www.debian.org/security/2023/dsa-5392

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-18T20:03:37Z/

url

https://www.debian.org/security/2023/dsa-5392

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033621
reference_id	1033621
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033621

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2183278
reference_id	2183278
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2183278

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-28427

reference_id

CVE-2023-28427

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-28427

reference_url

https://github.com/advisories/GHSA-mwq8-fjpf-c2gr

reference_id

GHSA-mwq8-fjpf-c2gr

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-mwq8-fjpf-c2gr

reference_url

https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-mwq8-fjpf-c2gr

reference_id

GHSA-mwq8-fjpf-c2gr

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-18T20:03:37Z/

url

https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-mwq8-fjpf-c2gr

reference_url

https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-rfv9-x7hh-xc32

reference_id

GHSA-rfv9-x7hh-xc32

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/matrix-org/matrix-js-sdk/security/advisories/GHSA-rfv9-x7hh-xc32

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-12

reference_id

mfsa2023-12

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-12

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

fixed_packages

aliases

CVE-2023-28427, GHSA-mwq8-fjpf-c2gr

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-fs3v-8fsn-uygj

url

VCID-j6c3-817n-zydj

vulnerability_id

VCID-j6c3-817n-zydj

summary

OCSP revocation status of recipient certificates was not checked when sending S/Mime encrypted email, and revoked certificates would be accepted. Thunderbird versions from 68 to 102.9.1 were affected by this bug.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0547.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0547.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-0547

reference_id

reference_type

scores

value	0.00135
scoring_system	epss
scoring_elements	0.33309
published_at	2026-04-02T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33231
published_at	2026-04-16T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33218
published_at	2026-04-08T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33251
published_at	2026-04-09T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33255
published_at	2026-04-11T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33215
published_at	2026-04-12T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33192
published_at	2026-04-13T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33342
published_at	2026-04-04T12:55:00Z

value	0.00135
scoring_system	epss
scoring_elements	0.33174
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186734
reference_id	2186734
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186734

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T18:19:51Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811298

reference_id

show_bug.cgi?id=1811298

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-10T18:19:51Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1811298

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-0547

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-j6c3-817n-zydj

url

VCID-w814-2cmz-ruhz

vulnerability_id

VCID-w814-2cmz-ruhz

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29535.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29535.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29535

reference_id

reference_type

scores

value	0.0033
scoring_system	epss
scoring_elements	0.56006
published_at	2026-04-08T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56009
published_at	2026-04-09T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56019
published_at	2026-04-11T12:55:00Z

value	0.0035
scoring_system	epss
scoring_elements	0.57497
published_at	2026-04-13T12:55:00Z

value	0.0035
scoring_system	epss
scoring_elements	0.57525
published_at	2026-04-16T12:55:00Z

value	0.0035
scoring_system	epss
scoring_elements	0.57517
published_at	2026-04-12T12:55:00Z

value	0.00419
scoring_system	epss
scoring_elements	0.61885
published_at	2026-04-04T12:55:00Z

value	0.00419
scoring_system	epss
scoring_elements	0.61855
published_at	2026-04-02T12:55:00Z

value	0.00419
scoring_system	epss
scoring_elements	0.61857
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186103
reference_id	2186103
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186103

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:51:21Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:51:21Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:51:21Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1820543

reference_id

show_bug.cgi?id=1820543

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:51:21Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1820543

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

reference_url	https://usn.ubuntu.com/6120-1/
reference_id	USN-6120-1
reference_type
scores
url	https://usn.ubuntu.com/6120-1/

fixed_packages

aliases

CVE-2023-29535

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-w814-2cmz-ruhz

url

VCID-yhj1-h62u-mud5

vulnerability_id

VCID-yhj1-h62u-mud5

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29533.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29533.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29533

reference_id

reference_type

scores

value	0.00138
scoring_system	epss
scoring_elements	0.33987
published_at	2026-04-16T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33952
published_at	2026-04-13T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.34058
published_at	2026-04-02T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33976
published_at	2026-04-12T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.34019
published_at	2026-04-11T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33988
published_at	2026-04-08T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.33946
published_at	2026-04-07T12:55:00Z

value	0.00138
scoring_system	epss
scoring_elements	0.34088
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186101
reference_id	2186101
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186101

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:57:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:57:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:57:06Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1798219

reference_id

show_bug.cgi?id=1798219

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:57:06Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1798219

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814597

reference_id

show_bug.cgi?id=1814597

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-09T15:57:06Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1814597

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

fixed_packages

aliases

CVE-2023-29533

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-yhj1-h62u-mud5

url

VCID-yjyu-u73t-u7bh

vulnerability_id

VCID-yjyu-u73t-u7bh

summary

Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29536.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29536.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29536

reference_id

reference_type

scores

value	0.0019
scoring_system	epss
scoring_elements	0.40896
published_at	2026-04-16T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40853
published_at	2026-04-13T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.4088
published_at	2026-04-02T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40872
published_at	2026-04-12T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40907
published_at	2026-04-11T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40891
published_at	2026-04-09T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40884
published_at	2026-04-08T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40835
published_at	2026-04-07T12:55:00Z

value	0.0019
scoring_system	epss
scoring_elements	0.40908
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1945

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1999

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28427

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29479

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29533

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29535

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2186104
reference_id	2186104
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2186104

reference_url	https://security.gentoo.org/glsa/202305-35
reference_id	GLSA-202305-35
reference_type
scores
url	https://security.gentoo.org/glsa/202305-35

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_id

mfsa2023-13

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-13

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_id

mfsa2023-13

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:50:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-13/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_id

mfsa2023-14

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-14

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_id

mfsa2023-14

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:50:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-14/

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_id

mfsa2023-15

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-15

reference_url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_id

mfsa2023-15

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:50:03Z/

url

https://www.mozilla.org/security/advisories/mfsa2023-15/

reference_url	https://access.redhat.com/errata/RHSA-2023:1785
reference_id	RHSA-2023:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1785

reference_url	https://access.redhat.com/errata/RHSA-2023:1786
reference_id	RHSA-2023:1786
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1786

reference_url	https://access.redhat.com/errata/RHSA-2023:1787
reference_id	RHSA-2023:1787
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1787

reference_url	https://access.redhat.com/errata/RHSA-2023:1788
reference_id	RHSA-2023:1788
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1788

reference_url	https://access.redhat.com/errata/RHSA-2023:1789
reference_id	RHSA-2023:1789
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1789

reference_url	https://access.redhat.com/errata/RHSA-2023:1790
reference_id	RHSA-2023:1790
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1790

reference_url	https://access.redhat.com/errata/RHSA-2023:1791
reference_id	RHSA-2023:1791
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1791

reference_url	https://access.redhat.com/errata/RHSA-2023:1792
reference_id	RHSA-2023:1792
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1792

reference_url	https://access.redhat.com/errata/RHSA-2023:1802
reference_id	RHSA-2023:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1802

reference_url	https://access.redhat.com/errata/RHSA-2023:1803
reference_id	RHSA-2023:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1803

reference_url	https://access.redhat.com/errata/RHSA-2023:1804
reference_id	RHSA-2023:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1804

reference_url	https://access.redhat.com/errata/RHSA-2023:1805
reference_id	RHSA-2023:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1805

reference_url	https://access.redhat.com/errata/RHSA-2023:1806
reference_id	RHSA-2023:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1806

reference_url	https://access.redhat.com/errata/RHSA-2023:1809
reference_id	RHSA-2023:1809
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1809

reference_url	https://access.redhat.com/errata/RHSA-2023:1810
reference_id	RHSA-2023:1810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1810

reference_url	https://access.redhat.com/errata/RHSA-2023:1811
reference_id	RHSA-2023:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:1811

reference_url

https://bugzilla.mozilla.org/show_bug.cgi?id=1821959

reference_id

show_bug.cgi?id=1821959

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-09T15:50:03Z/

url

https://bugzilla.mozilla.org/show_bug.cgi?id=1821959

reference_url	https://usn.ubuntu.com/6010-1/
reference_id	USN-6010-1
reference_type
scores
url	https://usn.ubuntu.com/6010-1/

reference_url	https://usn.ubuntu.com/6015-1/
reference_id	USN-6015-1
reference_type
scores
url	https://usn.ubuntu.com/6015-1/

reference_url	https://usn.ubuntu.com/6120-1/
reference_id	USN-6120-1
reference_type
scores
url	https://usn.ubuntu.com/6120-1/

fixed_packages

aliases

CVE-2023-29536

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-yjyu-u73t-u7bh

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@102.10.0-2%3Farch=el8_1

Package Instance