{"url":"http://public2.vulnerablecode.io/api/packages/111501?format=json","purl":"pkg:rpm/redhat/thunderbird@115.12.1-1?arch=el8_8","type":"rpm","namespace":"redhat","name":"thunderbird","version":"115.12.1-1","qualifiers":{"arch":"el8_8"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/64?format=json","vulnerability_id":"VCID-7hdn-2zem-bked","summary":"By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5690.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5690.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5690","reference_id":"","reference_type":"","scores":[{"value":"0.0588","scoring_system":"epss","scoring_elements":"0.90755","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0588","scoring_system":"epss","scoring_elements":"0.90767","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0588","scoring_system":"epss","scoring_elements":"0.90751","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0588","scoring_system":"epss","scoring_elements":"0.90753","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291396","reference_id":"2291396","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291396"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1883693","reference_id":"show_bug.cgi?id=1883693","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1883693"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5690"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7hdn-2zem-bked"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/69?format=json","vulnerability_id":"VCID-ejvr-kte3-1qex","summary":"Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5700.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5700.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5700","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37979","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37927","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37916","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3795","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37981","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291401","reference_id":"2291401","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291401"},{"reference_url":"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1862809%2C1889355%2C1893388%2C1895123","reference_id":"buglist.cgi?bug_id=1862809%2C1889355%2C1893388%2C1895123","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1862809%2C1889355%2C1893388%2C1895123"},{"reference_url":"https://security.gentoo.org/glsa/202408-02","reference_id":"GLSA-202408-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-02"},{"reference_url":"https://security.gentoo.org/glsa/202412-06","reference_id":"GLSA-202412-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-06"},{"reference_url":"https://security.gentoo.org/glsa/202412-13","reference_id":"GLSA-202412-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-13"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-11T16:16:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5700"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ejvr-kte3-1qex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63?format=json","vulnerability_id":"VCID-hnqx-vtdk-2fc9","summary":"If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5688.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5688.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5688","reference_id":"","reference_type":"","scores":[{"value":"0.01155","scoring_system":"epss","scoring_elements":"0.78899","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01155","scoring_system":"epss","scoring_elements":"0.78903","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01155","scoring_system":"epss","scoring_elements":"0.78884","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01155","scoring_system":"epss","scoring_elements":"0.78896","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01155","scoring_system":"epss","scoring_elements":"0.78906","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291395","reference_id":"2291395","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291395"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1895086","reference_id":"show_bug.cgi?id=1895086","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:33Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1895086"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5688"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hnqx-vtdk-2fc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62?format=json","vulnerability_id":"VCID-j7s4-cug8-gqcx","summary":"Memory corruption in the networking stack could have led to a potentially exploitable crash.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5702.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5702.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5702","reference_id":"","reference_type":"","scores":[{"value":"0.01067","scoring_system":"epss","scoring_elements":"0.7807","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01067","scoring_system":"epss","scoring_elements":"0.78073","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01067","scoring_system":"epss","scoring_elements":"0.78055","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01067","scoring_system":"epss","scoring_elements":"0.78067","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01067","scoring_system":"epss","scoring_elements":"0.78077","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5702"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291394","reference_id":"2291394","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291394"},{"reference_url":"https://security.gentoo.org/glsa/202408-02","reference_id":"GLSA-202408-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-18","reference_id":"mfsa2024-18","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-18"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-18/","reference_id":"mfsa2024-18","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-18/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1193389","reference_id":"show_bug.cgi?id=1193389","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-12T17:00:39Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1193389"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5702"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j7s4-cug8-gqcx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68?format=json","vulnerability_id":"VCID-mbkt-vp2u-cbau","summary":"By manipulating the text in an <input> tag, an attacker could have caused corrupt memory leading to a potentially exploitable crash.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5696.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5696.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5696","reference_id":"","reference_type":"","scores":[{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84279","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84278","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84265","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84276","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02069","scoring_system":"epss","scoring_elements":"0.84282","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291400","reference_id":"2291400","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291400"},{"reference_url":"https://security.gentoo.org/glsa/202408-02","reference_id":"GLSA-202408-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-02"},{"reference_url":"https://security.gentoo.org/glsa/202412-06","reference_id":"GLSA-202412-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-06"},{"reference_url":"https://security.gentoo.org/glsa/202412-13","reference_id":"GLSA-202412-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-13"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1896555","reference_id":"show_bug.cgi?id=1896555","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:40Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1896555"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5696"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbkt-vp2u-cbau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65?format=json","vulnerability_id":"VCID-mxwm-3vz3-u7h2","summary":"By tricking the browser with a X-Frame-Options header, a sandboxed iframe could have presented a button that, if clicked by a user, would bypass restrictions to open a new window.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5691.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5691.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5691","reference_id":"","reference_type":"","scores":[{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43148","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43138","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43173","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43194","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00207","scoring_system":"epss","scoring_elements":"0.43185","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291397","reference_id":"2291397","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291397"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1888695","reference_id":"show_bug.cgi?id=1888695","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:36Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1888695"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5691"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mxwm-3vz3-u7h2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67?format=json","vulnerability_id":"VCID-uzfh-4wgh-d3as","summary":"Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5693.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5693.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5693","reference_id":"","reference_type":"","scores":[{"value":"0.01765","scoring_system":"epss","scoring_elements":"0.82996","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01765","scoring_system":"epss","scoring_elements":"0.82984","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01765","scoring_system":"epss","scoring_elements":"0.82992","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5688"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5690"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5691"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5693"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5696"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5700"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5702"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291399","reference_id":"2291399","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2291399"},{"reference_url":"https://security.gentoo.org/glsa/202408-02","reference_id":"GLSA-202408-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202408-02"},{"reference_url":"https://security.gentoo.org/glsa/202412-06","reference_id":"GLSA-202412-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-06"},{"reference_url":"https://security.gentoo.org/glsa/202412-13","reference_id":"GLSA-202412-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-13"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-25"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-25/","reference_id":"mfsa2024-25","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-25/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-26"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-26/","reference_id":"mfsa2024-26","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-26/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2024-28"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2024-28/","reference_id":"mfsa2024-28","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2024-28/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00000.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html","reference_id":"msg00010.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00010.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3949","reference_id":"RHSA-2024:3949","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3949"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3950","reference_id":"RHSA-2024:3950","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3950"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3951","reference_id":"RHSA-2024:3951","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3951"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3952","reference_id":"RHSA-2024:3952","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3952"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3953","reference_id":"RHSA-2024:3953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3954","reference_id":"RHSA-2024:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3955","reference_id":"RHSA-2024:3955","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3955"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3958","reference_id":"RHSA-2024:3958","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3972","reference_id":"RHSA-2024:3972","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3972"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4001","reference_id":"RHSA-2024:4001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4002","reference_id":"RHSA-2024:4002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4003","reference_id":"RHSA-2024:4003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4004","reference_id":"RHSA-2024:4004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4015","reference_id":"RHSA-2024:4015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4016","reference_id":"RHSA-2024:4016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4018","reference_id":"RHSA-2024:4018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4036","reference_id":"RHSA-2024:4036","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4063","reference_id":"RHSA-2024:4063","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4063"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1891319","reference_id":"show_bug.cgi?id=1891319","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-14T03:55:39Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1891319"},{"reference_url":"https://usn.ubuntu.com/6840-1/","reference_id":"USN-6840-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6840-1/"},{"reference_url":"https://usn.ubuntu.com/6862-1/","reference_id":"USN-6862-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6862-1/"}],"fixed_packages":[],"aliases":["CVE-2024-5693"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uzfh-4wgh-d3as"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@115.12.1-1%3Farch=el8_8"}