Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/41728?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "type": "deb", "namespace": "debian", "name": "firefox", "version": "150.0-1", "qualifiers": { "distro": "sid" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "150.0.1-1", "latest_non_vulnerable_version": "151.0.4-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75816?format=api", "vulnerability_id": "VCID-1kcx-y92q-6yac", "summary": "Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.27953", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6779" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460090", "reference_id": "2460090", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460090" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:38:24Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:38:24Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023343", "reference_id": "show_bug.cgi?id=2023343", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:38:24Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023343" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6779" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1kcx-y92q-6yac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75446?format=api", "vulnerability_id": "VCID-2utf-2zhf-c3fp", "summary": "Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6750.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6750.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6750", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15576", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6750" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6750" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460102", "reference_id": "2460102", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460102" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023407", "reference_id": "show_bug.cgi?id=2023407", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:00Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023407" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6750" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2utf-2zhf-c3fp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75857?format=api", "vulnerability_id": "VCID-47jh-dctz-cybj", "summary": "Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6776.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6776.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0279", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6776" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460110", "reference_id": "2460110", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460110" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-21T13:49:53Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-21T13:49:53Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-21T13:49:53Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-21T13:49:53Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021770", "reference_id": "show_bug.cgi?id=2021770", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-21T13:49:53Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021770" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6776" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-47jh-dctz-cybj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75278?format=api", "vulnerability_id": "VCID-6dnm-2xzz-1ydp", "summary": "Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6755.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6755.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6755", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06723", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6755" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460100", "reference_id": "2460100", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460100" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T13:47:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T13:47:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1880429", "reference_id": "show_bug.cgi?id=1880429", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T13:47:14Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1880429" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6755" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6dnm-2xzz-1ydp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75471?format=api", "vulnerability_id": "VCID-71qs-ztfe-wfan", "summary": "Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6753.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6753.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6753", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19898", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6753" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6753", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6753" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460092", "reference_id": "2460092", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460092" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027501", "reference_id": "show_bug.cgi?id=2027501", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:04Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027501" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6753" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-71qs-ztfe-wfan" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75436?format=api", "vulnerability_id": "VCID-863g-jhc5-sbdh", "summary": "Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6773.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6773.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6773", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18158", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6773" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460093", "reference_id": "2460093", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460093" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:45:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:45:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2015959", "reference_id": "show_bug.cgi?id=2015959", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:45:48Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2015959" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6773" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-863g-jhc5-sbdh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75307?format=api", "vulnerability_id": "VCID-899j-ub2e-8yeh", "summary": "Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6747.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6747.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6747", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20953", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6747" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6747", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6747" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460095", "reference_id": "2460095", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460095" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:07Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:07Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:07Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:07Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021769", "reference_id": "show_bug.cgi?id=2021769", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:07Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021769" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6747" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-899j-ub2e-8yeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75473?format=api", "vulnerability_id": "VCID-8rug-991v-87ce", "summary": "Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13711", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6774" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460082", "reference_id": "2460082", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460082" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T14:01:03Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T14:01:03Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2016915", "reference_id": "show_bug.cgi?id=2016915", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T14:01:03Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2016915" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6774" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8rug-991v-87ce" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75699?format=api", "vulnerability_id": "VCID-8wkp-a1u7-9fbb", "summary": "Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6749.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6749.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6749", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17139", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6749" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6749", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6749" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460096", "reference_id": "2460096", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460096" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022610", "reference_id": "show_bug.cgi?id=2022610", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:07:48Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022610" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6749" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8wkp-a1u7-9fbb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75283?format=api", "vulnerability_id": "VCID-9qee-qdf5-8qg5", "summary": "Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21323", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6754" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460075", "reference_id": "2460075", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460075" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027541", "reference_id": "show_bug.cgi?id=2027541", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:49Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027541" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6754" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9qee-qdf5-8qg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75364?format=api", "vulnerability_id": "VCID-ahsj-dgmn-6kbu", "summary": "Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6752.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6752.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6752", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21654", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6752" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6752", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6752" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460078", "reference_id": "2460078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460078" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027499", "reference_id": "show_bug.cgi?id=2027499", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:01:52Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027499" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6752" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ahsj-dgmn-6kbu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75715?format=api", "vulnerability_id": "VCID-atfu-rpgm-jfhe", "summary": "Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6777.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6777.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6777", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19282", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460081", "reference_id": "2460081", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460081" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:19:10Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:19:10Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022726", "reference_id": "show_bug.cgi?id=2022726", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T17:19:10Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022726" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6777" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-atfu-rpgm-jfhe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75520?format=api", "vulnerability_id": "VCID-b4sz-ua7c-a7a2", "summary": "Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6768.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6768.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18816", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6768" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460098", "reference_id": "2460098", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460098" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T16:30:56Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T16:30:56Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023615", "reference_id": "show_bug.cgi?id=2023615", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T16:30:56Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023615" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6768" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b4sz-ua7c-a7a2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75570?format=api", "vulnerability_id": "VCID-bb74-91y2-fub8", "summary": "Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6769.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6769.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6769", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15303", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6769" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6769", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6769" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460108", "reference_id": "2460108", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460108" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-26T17:52:22Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-26T17:52:22Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-26T17:52:22Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-26T17:52:22Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023753", "reference_id": "show_bug.cgi?id=2023753", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-26T17:52:22Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023753" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6769" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bb74-91y2-fub8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75731?format=api", "vulnerability_id": "VCID-bf4u-vf3c-5ug3", "summary": "Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6751.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6751.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6751", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19898", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6751" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6751", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6751" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460109", "reference_id": "2460109", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460109" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:56:18Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:56:18Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:56:18Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:56:18Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025883", "reference_id": "show_bug.cgi?id=2025883", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:56:18Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025883" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6751" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bf4u-vf3c-5ug3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75516?format=api", "vulnerability_id": "VCID-cqte-23sm-tfe7", "summary": "Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6761.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6761.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6761", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15303", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6761" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6761", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460099", "reference_id": "2460099", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460099" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2017857", "reference_id": "show_bug.cgi?id=2017857", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T03:56:02Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2017857" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6761" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cqte-23sm-tfe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30142?format=api", "vulnerability_id": "VCID-dpmk-sdhd-bfby", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-8091", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07518", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8091" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-36", "reference_id": "mfsa2026-36", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-36" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-36/", "reference_id": "mfsa2026-36", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-36/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-39", "reference_id": "mfsa2026-39", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-39" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-39/", "reference_id": "mfsa2026-39", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-39/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-42", "reference_id": "mfsa2026-42", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-42" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-42/", "reference_id": "mfsa2026-42", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-42/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2029301", "reference_id": "show_bug.cgi?id=2029301", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-08T22:31:58Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2029301" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-8091" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dpmk-sdhd-bfby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75712?format=api", "vulnerability_id": "VCID-ekst-d1hk-6yhb", "summary": "Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6782.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6782.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6782", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13921", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6782" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460089", "reference_id": "2460089", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460089" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:03:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:03:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2026571", "reference_id": "show_bug.cgi?id=2026571", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:03:49Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2026571" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6782" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ekst-d1hk-6yhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75410?format=api", "vulnerability_id": "VCID-f21c-9qaq-67as", "summary": "Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6758.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6758.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6758", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18158", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6758" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460113", "reference_id": "2460113", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460113" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2013619", "reference_id": "show_bug.cgi?id=2013619", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:06:30Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2013619" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6758" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f21c-9qaq-67as" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75707?format=api", "vulnerability_id": "VCID-g98j-sqzn-77hx", "summary": "Use-after-free in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6746.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6746.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6746", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21323", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6746" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460112", "reference_id": "2460112", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460112" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2014596", "reference_id": "show_bug.cgi?id=2014596", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:08:29Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2014596" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6746" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g98j-sqzn-77hx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75456?format=api", "vulnerability_id": "VCID-hzdb-6d1p-qff5", "summary": "Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6757.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6757.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6757", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.14031", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6757" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460085", "reference_id": "2460085", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460085" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:30:51Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:30:51Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:30:51Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:30:51Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2013588", "reference_id": "show_bug.cgi?id=2013588", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:30:51Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2013588" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6757" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzdb-6d1p-qff5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75564?format=api", "vulnerability_id": "VCID-jav3-pxfq-2bgp", "summary": "Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6766.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6766.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6766", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15465", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6766" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6766", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6766" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460097", "reference_id": "2460097", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460097" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T16:37:26Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T16:37:26Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T16:37:26Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T16:37:26Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023207", "reference_id": "show_bug.cgi?id=2023207", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T16:37:26Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023207" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6766" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jav3-pxfq-2bgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75449?format=api", "vulnerability_id": "VCID-jfmf-zsab-hucz", "summary": "Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6771.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6771.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6771", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2101", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6771" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460105", "reference_id": "2460105", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460105" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T19:31:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T19:31:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T19:31:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T19:31:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025067", "reference_id": "show_bug.cgi?id=2025067", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T19:31:19Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025067" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6771" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jfmf-zsab-hucz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75401?format=api", "vulnerability_id": "VCID-jre8-zfj1-q3eu", "summary": "Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6783.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6783.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6783", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12875", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6783" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460073", "reference_id": "2460073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460073" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:28Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:28Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027564", "reference_id": "show_bug.cgi?id=2027564", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:11:28Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2027564" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6783" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jre8-zfj1-q3eu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75738?format=api", "vulnerability_id": "VCID-kch9-73aq-nbhy", "summary": "Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6748.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6748.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6748", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21485", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6748" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460103", "reference_id": "2460103", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460103" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T18:38:50Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T18:38:50Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T18:38:50Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T18:38:50Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022604", "reference_id": "show_bug.cgi?id=2022604", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-21T18:38:50Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022604" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6748" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kch9-73aq-nbhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75651?format=api", "vulnerability_id": "VCID-krty-3sm1-8yfk", "summary": "Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6760.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6760.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00059", "scoring_system": "epss", "scoring_elements": "0.18816", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6760" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460080", "reference_id": "2460080", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460080" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-22T14:31:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-22T14:31:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2016923", "reference_id": "show_bug.cgi?id=2016923", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-22T14:31:49Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2016923" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6760" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-krty-3sm1-8yfk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75519?format=api", "vulnerability_id": "VCID-m5vw-8aqd-7qbb", "summary": "Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6762.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6762.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6762", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15286", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6762", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6762" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460076", "reference_id": "2460076", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460076" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021080", "reference_id": "show_bug.cgi?id=2021080", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-22T14:32:59Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021080" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6762" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m5vw-8aqd-7qbb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75558?format=api", "vulnerability_id": "VCID-mq4v-3ngs-uba9", "summary": "Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6767.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6767.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6767", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16662", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6767" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6767", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6767" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460086", "reference_id": "2460086", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460086" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023209", "reference_id": "show_bug.cgi?id=2023209", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:09:39Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2023209" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6767" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mq4v-3ngs-uba9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75532?format=api", "vulnerability_id": "VCID-ngwq-c35a-2qb2", "summary": "Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6763.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6763.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6763", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19221", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6763", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6763" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460101", "reference_id": "2460101", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460101" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T20:12:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T20:12:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T20:12:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T20:12:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021666", "reference_id": "show_bug.cgi?id=2021666", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T20:12:14Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021666" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6763" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ngwq-c35a-2qb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75525?format=api", "vulnerability_id": "VCID-p1f6-z6yy-mfbx", "summary": "Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6778.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6778.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00048", "scoring_system": "epss", "scoring_elements": "0.15238", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6778" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:04:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:04:04Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022746", "reference_id": "show_bug.cgi?id=2022746", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:04:04Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022746" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6778" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p1f6-z6yy-mfbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75724?format=api", "vulnerability_id": "VCID-qbhn-6ab3-gkfp", "summary": "Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6786.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6786.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6786", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04286", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6786" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6786", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6786" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460088", "reference_id": "2460088", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460088" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:14Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6786" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qbhn-6ab3-gkfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75542?format=api", "vulnerability_id": "VCID-qxbx-1tqe-fucm", "summary": "Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12872", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6775" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460077", "reference_id": "2460077", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460077" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:54:54Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:54:54Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021768", "reference_id": "show_bug.cgi?id=2021768", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T16:54:54Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2021768" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6775" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qxbx-1tqe-fucm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75747?format=api", "vulnerability_id": "VCID-s4d8-1kfq-33fw", "summary": "Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6764.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6764.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6764", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00063", "scoring_system": "epss", "scoring_elements": "0.19904", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6764" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6764", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460106", "reference_id": "2460106", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460106" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:00:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:00:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:00:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:00:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022162", "reference_id": "show_bug.cgi?id=2022162", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:00:30Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022162" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6764" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s4d8-1kfq-33fw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75755?format=api", "vulnerability_id": "VCID-txgj-xraa-wyhy", "summary": "Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6781.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6781.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6781", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18158", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6781" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460111", "reference_id": "2460111", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460111" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:12Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:12Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025583", "reference_id": "show_bug.cgi?id=2025583", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:12Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025583" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6781" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-txgj-xraa-wyhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75781?format=api", "vulnerability_id": "VCID-vrjw-kd43-efe6", "summary": "Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14917", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6765" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6765" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460107", "reference_id": "2460107", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460107" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:10:32Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:10:32Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:10:32Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:10:32Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022419", "reference_id": "show_bug.cgi?id=2022419", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:10:32Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2022419" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6765" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vrjw-kd43-efe6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75528?format=api", "vulnerability_id": "VCID-xjtw-3amn-hff4", "summary": "Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6780.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6780.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6780", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18158", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6780" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460091", "reference_id": "2460091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460091" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:35Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:35Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025179", "reference_id": "show_bug.cgi?id=2025179", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-22T15:04:35Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2025179" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6780" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xjtw-3amn-hff4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75777?format=api", "vulnerability_id": "VCID-xwc6-w9qk-fbd3", "summary": "Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150 and Thunderbird 150.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6784.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6784.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6784", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03682", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6784" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460084", "reference_id": "2460084", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460084" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:17Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:17Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6784" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xwc6-w9qk-fbd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75511?format=api", "vulnerability_id": "VCID-y9g4-vcg7-4fh3", "summary": "Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6770.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6770.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6770", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20399", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6770" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6770", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6770" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460079", "reference_id": "2460079", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460079" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:05:25Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:05:25Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:05:25Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:05:25Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2024220", "reference_id": "show_bug.cgi?id=2024220", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-27T17:05:25Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2024220" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6770" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y9g4-vcg7-4fh3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75569?format=api", "vulnerability_id": "VCID-ysrx-j5bx-yub3", "summary": "Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6772.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6772.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17139", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6772" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6772", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6772" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460074", "reference_id": "2460074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460074" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2026089", "reference_id": "show_bug.cgi?id=2026089", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:40:19Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=2026089" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6772" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ysrx-j5bx-yub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75526?format=api", "vulnerability_id": "VCID-zr3v-j6jy-mye6", "summary": "Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150, Firefox ESR 115.35, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6785.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6785.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6785", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04446", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-6785" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6785", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6785" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460104", "reference_id": "2460104", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460104" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-30" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-30/", "reference_id": "mfsa2026-30", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:15Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-30/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-31" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-31/", "reference_id": "mfsa2026-31", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:15Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-31/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-32" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-32/", "reference_id": "mfsa2026-32", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:15Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-32/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-33" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-33/", "reference_id": "mfsa2026-33", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:15Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-33/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2026-34" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2026-34/", "reference_id": "mfsa2026-34", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-22T03:56:15Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2026-34/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10757", "reference_id": "RHSA-2026:10757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10766", "reference_id": "RHSA-2026:10766", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10766" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10767", "reference_id": "RHSA-2026:10767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12285", "reference_id": "RHSA-2026:12285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13537", "reference_id": "RHSA-2026:13537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13537" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15892", "reference_id": "RHSA-2026:15892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17477", "reference_id": "RHSA-2026:17477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17687", "reference_id": "RHSA-2026:17687", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17687" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17688", "reference_id": "RHSA-2026:17688", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17688" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17689", "reference_id": "RHSA-2026:17689", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17689" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17690", "reference_id": "RHSA-2026:17690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19041", "reference_id": "RHSA-2026:19041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19131", "reference_id": "RHSA-2026:19131", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19131" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19201", "reference_id": "RHSA-2026:19201", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19201" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19348", "reference_id": "RHSA-2026:19348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19461", "reference_id": "RHSA-2026:19461", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19461" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19462", "reference_id": "RHSA-2026:19462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19463", "reference_id": "RHSA-2026:19463", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19463" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19464", "reference_id": "RHSA-2026:19464", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19464" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19465", "reference_id": "RHSA-2026:19465", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19465" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19466", "reference_id": "RHSA-2026:19466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19467", "reference_id": "RHSA-2026:19467", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19467" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19468", "reference_id": "RHSA-2026:19468", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19469", "reference_id": "RHSA-2026:19469", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19542", "reference_id": "RHSA-2026:19542", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19542" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19655", "reference_id": "RHSA-2026:19655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19704", "reference_id": "RHSA-2026:19704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19704" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/41728?format=api", "purl": "pkg:deb/debian/firefox@150.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/40570?format=api", "purl": "pkg:deb/debian/firefox@151.0.4-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.4-1%3Fdistro=sid" } ], "aliases": [ "CVE-2026-6785" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zr3v-j6jy-mye6" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@150.0-1%3Fdistro=sid" }