{"url":"http://public2.vulnerablecode.io/api/packages/366756?format=json","purl":"pkg:rpm/redhat/xulrunner@10.0.5-1?arch=el6_2","type":"rpm","namespace":"redhat","name":"xulrunner","version":"10.0.5-1","qualifiers":{"arch":"el6_2"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183012?format=json","vulnerability_id":"VCID-2nd6-pya2-1yfw","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1945.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1945","reference_id":"","reference_type":"","scores":[{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41046","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41212","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41232","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00192","scoring_system":"epss","scoring_elements":"0.41223","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1945"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827831","reference_id":"827831","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827831"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1945","reference_id":"CVE-2012-1945","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1945"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-37","reference_id":"mfsa2012-37","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-37"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1945"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2nd6-pya2-1yfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/179589?format=json","vulnerability_id":"VCID-3ue1-hvyq-2yeg","summary":"Multiple vulnerabilities have been reported in Chromium and V8,\n    some of which may allow execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3101.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3101","reference_id":"","reference_type":"","scores":[{"value":"0.0174","scoring_system":"epss","scoring_elements":"0.82923","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0174","scoring_system":"epss","scoring_elements":"0.82985","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0174","scoring_system":"epss","scoring_elements":"0.82993","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0174","scoring_system":"epss","scoring_elements":"0.82988","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3101"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829","reference_id":"827829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829"},{"reference_url":"https://security.gentoo.org/glsa/201205-03","reference_id":"GLSA-201205-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201205-03"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2011-3101"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ue1-hvyq-2yeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183011?format=json","vulnerability_id":"VCID-a526-r9ue-1ueg","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1941.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1941.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1941","reference_id":"","reference_type":"","scores":[{"value":"0.06289","scoring_system":"epss","scoring_elements":"0.91139","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06289","scoring_system":"epss","scoring_elements":"0.91171","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06289","scoring_system":"epss","scoring_elements":"0.91177","published_at":"2026-06-13T12:55:00Z"},{"value":"0.06289","scoring_system":"epss","scoring_elements":"0.91176","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1941"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843","reference_id":"827843","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1941","reference_id":"CVE-2012-1941","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1941"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40","reference_id":"mfsa2012-40","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1941"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a526-r9ue-1ueg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183000?format=json","vulnerability_id":"VCID-cyw4-q2cj-5qdu","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1939.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1939.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1939","reference_id":"","reference_type":"","scores":[{"value":"0.03612","scoring_system":"epss","scoring_elements":"0.88056","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03612","scoring_system":"epss","scoring_elements":"0.88096","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03612","scoring_system":"epss","scoring_elements":"0.88102","published_at":"2026-06-13T12:55:00Z"},{"value":"0.03612","scoring_system":"epss","scoring_elements":"0.88101","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1939"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829","reference_id":"827829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1939","reference_id":"CVE-2012-1939","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1939"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34","reference_id":"mfsa2012-34","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"}],"fixed_packages":[],"aliases":["CVE-2012-1939"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cyw4-q2cj-5qdu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/263664?format=json","vulnerability_id":"VCID-fxn7-dhts-guax","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1944.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1944.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1944","reference_id":"","reference_type":"","scores":[{"value":"0.00696","scoring_system":"epss","scoring_elements":"0.72393","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00696","scoring_system":"epss","scoring_elements":"0.72473","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00696","scoring_system":"epss","scoring_elements":"0.72488","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00696","scoring_system":"epss","scoring_elements":"0.72483","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1944"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827830","reference_id":"827830","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827830"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1944","reference_id":"CVE-2012-1944","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1944"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-36","reference_id":"mfsa2012-36","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-36"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1944"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fxn7-dhts-guax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183013?format=json","vulnerability_id":"VCID-gyns-7xtt-wqea","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1946.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1946.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1946","reference_id":"","reference_type":"","scores":[{"value":"0.01451","scoring_system":"epss","scoring_elements":"0.81218","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01451","scoring_system":"epss","scoring_elements":"0.81278","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01451","scoring_system":"epss","scoring_elements":"0.81286","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01451","scoring_system":"epss","scoring_elements":"0.81277","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1946"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827832","reference_id":"827832","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827832"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1946","reference_id":"CVE-2012-1946","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1946"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-38","reference_id":"mfsa2012-38","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-38"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1946"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gyns-7xtt-wqea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183014?format=json","vulnerability_id":"VCID-jem1-dpjn-akef","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1947.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1947.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1947","reference_id":"","reference_type":"","scores":[{"value":"0.0537","scoring_system":"epss","scoring_elements":"0.90342","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0537","scoring_system":"epss","scoring_elements":"0.90341","published_at":"2026-06-14T12:55:00Z"},{"value":"0.06784","scoring_system":"epss","scoring_elements":"0.91518","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06784","scoring_system":"epss","scoring_elements":"0.91548","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1947"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843","reference_id":"827843","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1947","reference_id":"CVE-2012-1947","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1947"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40","reference_id":"mfsa2012-40","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1947"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jem1-dpjn-akef"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/264297?format=json","vulnerability_id":"VCID-ktvs-vr8n-13g2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3105.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3105.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3105","reference_id":"","reference_type":"","scores":[{"value":"0.02737","scoring_system":"epss","scoring_elements":"0.86297","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02737","scoring_system":"epss","scoring_elements":"0.86348","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02737","scoring_system":"epss","scoring_elements":"0.86358","published_at":"2026-06-13T12:55:00Z"},{"value":"0.02737","scoring_system":"epss","scoring_elements":"0.86356","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3105"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829","reference_id":"827829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3105","reference_id":"CVE-2012-3105","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3105"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34","reference_id":"mfsa2012-34","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"}],"fixed_packages":[],"aliases":["CVE-2012-3105"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ktvs-vr8n-13g2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182991?format=json","vulnerability_id":"VCID-qsjr-fc1f-m7d2","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1938.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1938","reference_id":"","reference_type":"","scores":[{"value":"0.01248","scoring_system":"epss","scoring_elements":"0.79726","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01248","scoring_system":"epss","scoring_elements":"0.79791","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01248","scoring_system":"epss","scoring_elements":"0.79809","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01248","scoring_system":"epss","scoring_elements":"0.79802","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1938"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829","reference_id":"827829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1938","reference_id":"CVE-2012-1938","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1938"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34","reference_id":"mfsa2012-34","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1938"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qsjr-fc1f-m7d2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/183009?format=json","vulnerability_id":"VCID-tuj4-yw4f-zqcn","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1940.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1940.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1940","reference_id":"","reference_type":"","scores":[{"value":"0.03035","scoring_system":"epss","scoring_elements":"0.86959","published_at":"2026-06-11T12:55:00Z"},{"value":"0.03035","scoring_system":"epss","scoring_elements":"0.87004","published_at":"2026-06-12T12:55:00Z"},{"value":"0.03035","scoring_system":"epss","scoring_elements":"0.87015","published_at":"2026-06-13T12:55:00Z"},{"value":"0.03035","scoring_system":"epss","scoring_elements":"0.87011","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1940"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843","reference_id":"827843","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827843"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1940","reference_id":"CVE-2012-1940","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1940"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40","reference_id":"mfsa2012-40","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-40"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1940"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tuj4-yw4f-zqcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182981?format=json","vulnerability_id":"VCID-y7xd-5u93-8bda","summary":"Multiple vulnerabilities have been found in Mozilla Firefox,\n    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may\n    allow execution of arbitrary code or local privilege escalation.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1937.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1937.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1937","reference_id":"","reference_type":"","scores":[{"value":"0.01723","scoring_system":"epss","scoring_elements":"0.82817","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01723","scoring_system":"epss","scoring_elements":"0.82879","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01723","scoring_system":"epss","scoring_elements":"0.82888","published_at":"2026-06-13T12:55:00Z"},{"value":"0.01723","scoring_system":"epss","scoring_elements":"0.82883","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1937"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829","reference_id":"827829","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=827829"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1937","reference_id":"CVE-2012-1937","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1937"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34","reference_id":"mfsa2012-34","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-34"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0710","reference_id":"RHSA-2012:0710","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0710"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0715","reference_id":"RHSA-2012:0715","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0715"},{"reference_url":"https://usn.ubuntu.com/1463-1/","reference_id":"USN-1463-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-1/"},{"reference_url":"https://usn.ubuntu.com/1463-4/","reference_id":"USN-1463-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-4/"},{"reference_url":"https://usn.ubuntu.com/1463-6/","reference_id":"USN-1463-6","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1463-6/"}],"fixed_packages":[],"aliases":["CVE-2012-1937"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7xd-5u93-8bda"}],"fixing_vulnerabilities":[],"risk_score":"4.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xulrunner@10.0.5-1%3Farch=el6_2"}