Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-7xac-5zdj-9fgk |
|---|
| Summary | Mozilla developers and community members Boris Zbarsky, Carsten Book, Christian Holler, Byron Campen, Jan de Mooij, Jason Kratzer, Jesse Schwartzentruber, Marcia Knous, Randell Jesup, Tyson Smith, and Ting-Yu Chou reported memory safety bugs present in Firefox 56. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
| 0 |
| url |
pkg:alpm/archlinux/firefox@56.0.2-1 |
| purl |
pkg:alpm/archlinux/firefox@56.0.2-1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2xza-hhmr-5ybw |
|
| 1 |
| vulnerability |
VCID-4437-azu7-hyhb |
|
| 2 |
| vulnerability |
VCID-6a4w-c6p8-affn |
|
| 3 |
| vulnerability |
VCID-7xac-5zdj-9fgk |
|
| 4 |
| vulnerability |
VCID-bk86-keag-kfg8 |
|
| 5 |
| vulnerability |
VCID-dhyh-m8p3-ebdq |
|
| 6 |
| vulnerability |
VCID-e4pk-uyeh-xfgk |
|
| 7 |
| vulnerability |
VCID-ebzs-h9p8-tbb4 |
|
| 8 |
| vulnerability |
VCID-gkrs-1aat-efhf |
|
| 9 |
| vulnerability |
VCID-ka31-epgw-2kcq |
|
| 10 |
| vulnerability |
VCID-kg3p-hut6-47f6 |
|
| 11 |
| vulnerability |
VCID-qc2y-5tzg-ruav |
|
| 12 |
| vulnerability |
VCID-wwjw-cqjk-8qe2 |
|
| 13 |
| vulnerability |
VCID-xn3a-bun2-vkhy |
|
| 14 |
| vulnerability |
VCID-y92g-afff-2ua7 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@56.0.2-1 |
|
|
|---|
| References |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7827 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84173 |
| published_at |
2026-04-11T12:55:00Z |
|
| 1 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84094 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84185 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84162 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84167 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84107 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84124 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84127 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84149 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.02127 |
| scoring_system |
epss |
| scoring_elements |
0.84155 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.02566 |
| scoring_system |
epss |
| scoring_elements |
0.85557 |
| published_at |
2026-04-21T12:55:00Z |
|
| 11 |
| value |
0.02566 |
| scoring_system |
epss |
| scoring_elements |
0.85561 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-7827 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
|---|
| Weaknesses |
| 0 |
| cwe_id |
119 |
| name |
Improper Restriction of Operations within the Bounds of a Memory Buffer |
| description |
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. |
|
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 9.0 - 10.0 |
|---|
| Exploitability | 0.5 |
|---|
| Weighted_severity | 9.0 |
|---|
| Risk_score | 4.5 |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-7xac-5zdj-9fgk |
|---|