{"url":"http://public2.vulnerablecode.io/api/packages/128062?format=json","purl":"pkg:rpm/redhat/firefox@3.0.16-4?arch=el4","type":"rpm","namespace":"redhat","name":"firefox","version":"3.0.16-4","qualifiers":{"arch":"el4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53073?format=json","vulnerability_id":"VCID-6w6v-e8f8-3yew","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3986.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3986.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3986","reference_id":"","reference_type":"","scores":[{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83647","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83511","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83524","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83539","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83541","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83565","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83574","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83589","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83583","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83578","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83612","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83613","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83637","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01982","scoring_system":"epss","scoring_elements":"0.83644","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3986"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546724","reference_id":"546724","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546724"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3986","reference_id":"CVE-2009-3986","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3986"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-70","reference_id":"mfsa2009-70","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-70"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"},{"reference_url":"https://usn.ubuntu.com/874-1/","reference_id":"USN-874-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/874-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3986"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6w6v-e8f8-3yew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53048?format=json","vulnerability_id":"VCID-9jkh-xn2d-3bdx","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3979.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3979.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3979","reference_id":"","reference_type":"","scores":[{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89822","published_at":"2026-04-29T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89757","published_at":"2026-04-01T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.8976","published_at":"2026-04-02T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89775","published_at":"2026-04-04T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89778","published_at":"2026-04-07T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89796","published_at":"2026-04-08T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89802","published_at":"2026-04-09T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89808","published_at":"2026-04-21T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89806","published_at":"2026-04-12T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89799","published_at":"2026-04-13T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89813","published_at":"2026-04-16T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89814","published_at":"2026-04-18T12:55:00Z"},{"value":"0.05076","scoring_system":"epss","scoring_elements":"0.89823","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3979"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546694","reference_id":"546694","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546694"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979","reference_id":"CVE-2009-3979","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-65","reference_id":"mfsa2009-65","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-65"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1673","reference_id":"RHSA-2009:1673","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1673"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0153","reference_id":"RHSA-2010:0153","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0153"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0154","reference_id":"RHSA-2010:0154","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0154"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"},{"reference_url":"https://usn.ubuntu.com/874-1/","reference_id":"USN-874-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/874-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3979"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9jkh-xn2d-3bdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53065?format=json","vulnerability_id":"VCID-f6nv-cnkg-67ep","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3983.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3983.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3983","reference_id":"","reference_type":"","scores":[{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71276","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71132","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71141","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71159","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71134","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71176","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71189","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71212","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71197","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71181","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71227","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71234","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71211","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71265","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00664","scoring_system":"epss","scoring_elements":"0.71272","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546720","reference_id":"546720","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546720"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3983","reference_id":"CVE-2009-3983","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3983"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-68","reference_id":"mfsa2009-68","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-68"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1673","reference_id":"RHSA-2009:1673","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1673"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"},{"reference_url":"https://usn.ubuntu.com/874-1/","reference_id":"USN-874-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/874-1/"},{"reference_url":"https://usn.ubuntu.com/915-1/","reference_id":"USN-915-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/915-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3983"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f6nv-cnkg-67ep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53067?format=json","vulnerability_id":"VCID-heq3-m3a7-wkg8","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3984.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3984.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3984","reference_id":"","reference_type":"","scores":[{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83937","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.838","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83813","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83828","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.8383","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83854","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.8386","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83876","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.8387","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83866","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83899","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.839","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83925","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0205","scoring_system":"epss","scoring_elements":"0.83933","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3984"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546722","reference_id":"546722","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3984","reference_id":"CVE-2009-3984","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3984"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-69","reference_id":"mfsa2009-69","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-69"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1673","reference_id":"RHSA-2009:1673","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1673"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"},{"reference_url":"https://usn.ubuntu.com/874-1/","reference_id":"USN-874-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/874-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3984"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-heq3-m3a7-wkg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53071?format=json","vulnerability_id":"VCID-t2jx-6u2a-k3bg","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3985.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3985.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3985","reference_id":"","reference_type":"","scores":[{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64234","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64081","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64138","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64166","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64126","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64176","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64192","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64206","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64195","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64201","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64213","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.642","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00461","scoring_system":"epss","scoring_elements":"0.64221","published_at":"2026-04-24T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3985"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546726","reference_id":"546726","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546726"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3985","reference_id":"CVE-2009-3985","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3985"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-69","reference_id":"mfsa2009-69","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-69"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"},{"reference_url":"https://usn.ubuntu.com/874-1/","reference_id":"USN-874-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/874-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3985"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t2jx-6u2a-k3bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/53058?format=json","vulnerability_id":"VCID-v9jj-nrth-4ufh","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3981.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3981.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3981","reference_id":"","reference_type":"","scores":[{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89335","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89256","published_at":"2026-04-01T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89262","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89276","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89278","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89296","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.893","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89309","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89306","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89303","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89316","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89315","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89311","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89328","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04649","scoring_system":"epss","scoring_elements":"0.89332","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3981"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=546713","reference_id":"546713","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=546713"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3981","reference_id":"CVE-2009-3981","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3981"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-65","reference_id":"mfsa2009-65","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2009-65"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1674","reference_id":"RHSA-2009:1674","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1674"},{"reference_url":"https://usn.ubuntu.com/873-1/","reference_id":"USN-873-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/873-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3981"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v9jj-nrth-4ufh"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@3.0.16-4%3Farch=el4"}