Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:mozilla/Firefox@16.0.1
Typemozilla
Namespace
NameFirefox
Version16.0.1
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version16.0.2
Latest_non_vulnerable_version151.0.3
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-6ysw-nweg-vkau
vulnerability_id VCID-6ysw-nweg-vkau
summary 
Mozilla security researcher moz_bug_r_a4 reported a regression where security wrappers are unwrapped without doing a security check in defaultValue(). This can allow for improper access to the Location object. In versions 15 and earlier of affected products, there was also the potential for arbitrary code execution. 
Security researcher Gareth Heyes also blogged about a Firefox 16 only symptom that is fixed in the updated versions.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4193.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4193.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4193
reference_id
reference_type
scores
0
value 0.01406
scoring_system epss
scoring_elements 0.80841
published_at 2026-06-06T12:55:00Z
1
value 0.01406
scoring_system epss
scoring_elements 0.80812
published_at 2026-06-04T12:55:00Z
2
value 0.01406
scoring_system epss
scoring_elements 0.80839
published_at 2026-06-05T12:55:00Z
3
value 0.01406
scoring_system epss
scoring_elements 0.80854
published_at 2026-06-09T12:55:00Z
4
value 0.01406
scoring_system epss
scoring_elements 0.80838
published_at 2026-06-07T12:55:00Z
5
value 0.01406
scoring_system epss
scoring_elements 0.80834
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4193
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=865215
reference_id 865215
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=865215
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4193
reference_id CVE-2012-4193
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4193
4
reference_url https://security.gentoo.org/glsa/201301-01
reference_id GLSA-201301-01
reference_type
scores
url https://security.gentoo.org/glsa/201301-01
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-89
reference_id mfsa2012-89
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-89
6
reference_url https://access.redhat.com/errata/RHSA-2012:1361
reference_id RHSA-2012:1361
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1361
7
reference_url https://access.redhat.com/errata/RHSA-2012:1362
reference_id RHSA-2012:1362
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1362
8
reference_url https://usn.ubuntu.com/1611-1/
reference_id USN-1611-1
reference_type
scores
url https://usn.ubuntu.com/1611-1/
fixed_packages
0
url pkg:mozilla/Firefox@16.0.1
purl pkg:mozilla/Firefox@16.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@16.0.1
aliases CVE-2012-4193
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6ysw-nweg-vkau
1
url VCID-hugz-ntms-1uge
vulnerability_id VCID-hugz-ntms-1uge
summary 
Mozilla developers identified and fixed two top crashing bugs in the
browser engine used in Firefox and other Mozilla-based products. These bugs showed evidence of memory corruption under certain circumstances, and we
presume that with enough effort at least some of these could be exploited to run
arbitrary code.The first of these bugs, a FreeType issue, is a mobile only issue which happens on custom kernels like Cyanogenmod, not on standard Android installations. The second bug is a websockets crash affecting Firefox 16 but not Firefox ESR.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4190.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4190.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4190
reference_id
reference_type
scores
0
value 0.08531
scoring_system epss
scoring_elements 0.92538
published_at 2026-06-06T12:55:00Z
1
value 0.08531
scoring_system epss
scoring_elements 0.92529
published_at 2026-06-04T12:55:00Z
2
value 0.08531
scoring_system epss
scoring_elements 0.92542
published_at 2026-06-05T12:55:00Z
3
value 0.08531
scoring_system epss
scoring_elements 0.9255
published_at 2026-06-09T12:55:00Z
4
value 0.08531
scoring_system epss
scoring_elements 0.92533
published_at 2026-06-07T12:55:00Z
5
value 0.08531
scoring_system epss
scoring_elements 0.92532
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4190
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=872753
reference_id 872753
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=872753
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4190
reference_id CVE-2012-4190
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4190
4
reference_url https://security.gentoo.org/glsa/201301-01
reference_id GLSA-201301-01
reference_type
scores
url https://security.gentoo.org/glsa/201301-01
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-88
reference_id mfsa2012-88
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-88
fixed_packages
0
url pkg:mozilla/Firefox@16.0.1
purl pkg:mozilla/Firefox@16.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@16.0.1
aliases CVE-2012-4190
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hugz-ntms-1uge
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@16.0.1