Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie

Type deb

Namespace debian

Name firefox-esr

Version 68.2.0esr-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 68.3.0esr-1

Latest_non_vulnerable_version 140.11.0esr-1~deb13u1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1949-yeuk-v7ba

vulnerability_id VCID-1949-yeuk-v7ba

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11763.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11763.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11763

reference_id

reference_type

scores

value	0.00804
scoring_system	epss
scoring_elements	0.74627
published_at	2026-06-12T12:55:00Z

value	0.00804
scoring_system	epss
scoring_elements	0.74555
published_at	2026-06-11T12:55:00Z

value	0.00804
scoring_system	epss
scoring_elements	0.74638
published_at	2026-06-14T12:55:00Z

value	0.00804
scoring_system	epss
scoring_elements	0.7464
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764444
reference_id	1764444
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764444

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11763

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1949-yeuk-v7ba

url VCID-42g8-696a-w3ba

vulnerability_id VCID-42g8-696a-w3ba

summary Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a behavior of Firefox before 68.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-13075

reference_id

reference_type

scores

value	0.00146
scoring_system	epss
scoring_elements	0.34764
published_at	2026-06-11T12:55:00Z

value	0.00146
scoring_system	epss
scoring_elements	0.34942
published_at	2026-06-12T12:55:00Z

value	0.00146
scoring_system	epss
scoring_elements	0.34965
published_at	2026-06-13T12:55:00Z

value	0.00146
scoring_system	epss
scoring_elements	0.34944
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-13075

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13075
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13075

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-13075

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-42g8-696a-w3ba

url VCID-9hm7-enbx-bqht

vulnerability_id VCID-9hm7-enbx-bqht

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11762.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11762.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11762

reference_id

reference_type

scores

value	0.00353
scoring_system	epss
scoring_elements	0.58148
published_at	2026-06-12T12:55:00Z

value	0.00353
scoring_system	epss
scoring_elements	0.58034
published_at	2026-06-11T12:55:00Z

value	0.00353
scoring_system	epss
scoring_elements	0.58152
published_at	2026-06-14T12:55:00Z

value	0.00353
scoring_system	epss
scoring_elements	0.58165
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764443
reference_id	1764443
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764443

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11762

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9hm7-enbx-bqht

url VCID-anqf-dzm5-5kc3

vulnerability_id VCID-anqf-dzm5-5kc3

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11764.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11764.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11764

reference_id

reference_type

scores

value	0.00934
scoring_system	epss
scoring_elements	0.76668
published_at	2026-06-12T12:55:00Z

value	0.00934
scoring_system	epss
scoring_elements	0.76599
published_at	2026-06-11T12:55:00Z

value	0.00934
scoring_system	epss
scoring_elements	0.76678
published_at	2026-06-14T12:55:00Z

value	0.00934
scoring_system	epss
scoring_elements	0.76682
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764446
reference_id	1764446
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764446

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11764

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-anqf-dzm5-5kc3

url VCID-g68f-jqjp-ybcu

vulnerability_id VCID-g68f-jqjp-ybcu

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15903.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15903.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-15903

reference_id

reference_type

scores

value	0.00203
scoring_system	epss
scoring_elements	0.42595
published_at	2026-06-14T12:55:00Z

value	0.00203
scoring_system	epss
scoring_elements	0.42422
published_at	2026-06-11T12:55:00Z

value	0.00203
scoring_system	epss
scoring_elements	0.42585
published_at	2026-06-12T12:55:00Z

value	0.00203
scoring_system	epss
scoring_elements	0.42607
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-15903

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://seclists.org/bugtraq/2019/Nov/1

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Nov/1

reference_url

https://seclists.org/bugtraq/2019/Dec/17

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/17

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1752592
reference_id	1752592
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1752592

reference_url

https://security.gentoo.org/glsa/201911-08

reference_id

201911-08

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://security.gentoo.org/glsa/201911-08

reference_url

https://seclists.org/bugtraq/2019/Dec/21

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/21

reference_url

http://seclists.org/fulldisclosure/2019/Dec/23

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/23

reference_url

https://seclists.org/bugtraq/2019/Dec/23

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Dec/23

reference_url

https://seclists.org/bugtraq/2019/Nov/24

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Nov/24

reference_url

http://seclists.org/fulldisclosure/2019/Dec/26

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/26

reference_url

http://seclists.org/fulldisclosure/2019/Dec/27

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/27

reference_url

https://seclists.org/bugtraq/2019/Oct/29

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Oct/29

reference_url

http://seclists.org/fulldisclosure/2019/Dec/30

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://seclists.org/fulldisclosure/2019/Dec/30

reference_url

https://seclists.org/bugtraq/2019/Sep/30

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Sep/30

reference_url

https://github.com/libexpat/libexpat/issues/317

reference_id

317

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/issues/317

reference_url

https://github.com/libexpat/libexpat/pull/318

reference_id

318

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/pull/318

reference_url

https://github.com/libexpat/libexpat/issues/342

reference_id

342

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/issues/342

reference_url

https://seclists.org/bugtraq/2019/Sep/37

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://seclists.org/bugtraq/2019/Sep/37

reference_url

https://usn.ubuntu.com/4132-1/

reference_id

4132-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4132-1/

reference_url

https://usn.ubuntu.com/4132-2/

reference_id

4132-2

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4132-2/

reference_url

https://usn.ubuntu.com/4165-1/

reference_id

4165-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4165-1/

reference_url

https://usn.ubuntu.com/4202-1/

reference_id

4202-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4202-1/

reference_url

https://usn.ubuntu.com/4335-1/

reference_id

4335-1

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://usn.ubuntu.com/4335-1/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939394
reference_id	939394
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939394

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA/

reference_id

A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A4TZKPJFTURRLXIGLB34WVKQ5HGY6JJA/

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url	https://security.archlinux.org/ASA-201910-17
reference_id	ASA-201910-17
reference_type
scores
url	https://security.archlinux.org/ASA-201910-17

reference_url

https://security.archlinux.org/AVG-1053

reference_id

AVG-1053

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1053

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP/

reference_id

BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BDUTI5TVQWIGGQXPEVI4T2ENHFSBMIBP/

reference_url

https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43

reference_id

c20b758c332d9a13afbbb276d30db1d183a85d43

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43

reference_url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_id

cpuapr2020.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_id

cpuoct2020.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.oracle.com/security-alerts/cpuoct2020.html

reference_url

https://www.debian.org/security/2019/dsa-4530

reference_id

dsa-4530

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4530

reference_url

https://www.debian.org/security/2019/dsa-4549

reference_id

dsa-4549

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4549

reference_url

https://www.debian.org/security/2019/dsa-4571

reference_id

dsa-4571

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.debian.org/security/2019/dsa-4571

reference_url

https://support.apple.com/kb/HT210785

reference_id

HT210785

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210785

reference_url

https://support.apple.com/kb/HT210788

reference_id

HT210788

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210788

reference_url

https://support.apple.com/kb/HT210789

reference_id

HT210789

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210789

reference_url

https://support.apple.com/kb/HT210790

reference_id

HT210790

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210790

reference_url

https://support.apple.com/kb/HT210793

reference_id

HT210793

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210793

reference_url

https://support.apple.com/kb/HT210794

reference_id

HT210794

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210794

reference_url

https://support.apple.com/kb/HT210795

reference_id

HT210795

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://support.apple.com/kb/HT210795

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.html

reference_id

msg00000.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.html

reference_id

msg00002.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.html

reference_id

msg00003.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.html

reference_url

https://lists.debian.org/debian-lts-announce/2019/11/msg00006.html

reference_id

msg00006.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.debian.org/debian-lts-announce/2019/11/msg00006.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html

reference_id

msg00008.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.html

reference_id

msg00013.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.html

reference_id

msg00016.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2019/11/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.debian.org/debian-lts-announce/2019/11/msg00017.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.html

reference_id

msg00019.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html

reference_id

msg00040.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.html

reference_id

msg00080.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.html

reference_id

msg00081.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.html

reference_url

https://security.netapp.com/advisory/ntap-20190926-0004/

reference_id

ntap-20190926-0004

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://security.netapp.com/advisory/ntap-20190926-0004/

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url

https://access.redhat.com/errata/RHSA-2019:3210

reference_id

RHSA-2019:3210

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3210

reference_url

https://access.redhat.com/errata/RHSA-2019:3237

reference_id

RHSA-2019:3237

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3237

reference_url

https://access.redhat.com/errata/RHSA-2019:3756

reference_id

RHSA-2019:3756

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://access.redhat.com/errata/RHSA-2019:3756

reference_url	https://access.redhat.com/errata/RHSA-2020:2644
reference_id	RHSA-2020:2644
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2644

reference_url	https://access.redhat.com/errata/RHSA-2020:2646
reference_id	RHSA-2020:2646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2646

reference_url	https://access.redhat.com/errata/RHSA-2020:3952
reference_id	RHSA-2020:3952
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3952

reference_url	https://access.redhat.com/errata/RHSA-2020:4484
reference_id	RHSA-2020:4484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4484

reference_url	https://access.redhat.com/errata/RHSA-2021:0949
reference_id	RHSA-2021:0949
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0949

reference_url	https://access.redhat.com/errata/RHSA-2025:22871
reference_id	RHSA-2025:22871
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22871

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG/

reference_id

S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S26LGXXQ7YF2BP3RGOWELBFKM6BHF6UG/

reference_url

http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html

reference_id

Slackware-Security-Advisory-expat-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html

reference_url

http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_id

Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.html

reference_url

http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html

reference_id

Slackware-Security-Advisory-python-Updates.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.html

reference_url

https://www.tenable.com/security/tns-2021-11

reference_id

tns-2021-11

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-30T19:27:14Z/

url

https://www.tenable.com/security/tns-2021-11

reference_url	https://usn.ubuntu.com/7199-1/
reference_id	USN-7199-1
reference_type
scores
url	https://usn.ubuntu.com/7199-1/

reference_url	https://usn.ubuntu.com/USN-4852-1/
reference_id	USN-USN-4852-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4852-1/

reference_url	https://usn.ubuntu.com/USN-5455-1/
reference_id	USN-USN-5455-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5455-1/

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-15903

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g68f-jqjp-ybcu

url VCID-j44h-bkqe-y3hm

vulnerability_id VCID-j44h-bkqe-y3hm

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11760.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11760.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11760

reference_id

reference_type

scores

value	0.01271
scoring_system	epss
scoring_elements	0.79981
published_at	2026-06-12T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79917
published_at	2026-06-11T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.7999
published_at	2026-06-14T12:55:00Z

value	0.01271
scoring_system	epss
scoring_elements	0.79998
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764441
reference_id	1764441
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764441

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11760

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j44h-bkqe-y3hm

url VCID-n5rb-jhhc-bkem

vulnerability_id VCID-n5rb-jhhc-bkem

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11759.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11759.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11759

reference_id

reference_type

scores

value	0.0213
scoring_system	epss
scoring_elements	0.84592
published_at	2026-06-12T12:55:00Z

value	0.0213
scoring_system	epss
scoring_elements	0.84539
published_at	2026-06-11T12:55:00Z

value	0.0213
scoring_system	epss
scoring_elements	0.84595
published_at	2026-06-14T12:55:00Z

value	0.0213
scoring_system	epss
scoring_elements	0.84602
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764440
reference_id	1764440
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764440

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11759

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n5rb-jhhc-bkem

url VCID-r1x1-5jdr-qudp

vulnerability_id VCID-r1x1-5jdr-qudp

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11757.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11757.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11757

reference_id

reference_type

scores

value	0.00886
scoring_system	epss
scoring_elements	0.7597
published_at	2026-06-12T12:55:00Z

value	0.00886
scoring_system	epss
scoring_elements	0.75899
published_at	2026-06-11T12:55:00Z

value	0.00886
scoring_system	epss
scoring_elements	0.75978
published_at	2026-06-14T12:55:00Z

value	0.00886
scoring_system	epss
scoring_elements	0.75984
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764438
reference_id	1764438
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764438

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11757

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r1x1-5jdr-qudp

url VCID-x9nw-k6jw-pbhn

vulnerability_id VCID-x9nw-k6jw-pbhn

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird,
    the worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11761.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11761.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11761

reference_id

reference_type

scores

value	0.00414
scoring_system	epss
scoring_elements	0.62167
published_at	2026-06-12T12:55:00Z

value	0.00414
scoring_system	epss
scoring_elements	0.62065
published_at	2026-06-11T12:55:00Z

value	0.00414
scoring_system	epss
scoring_elements	0.62175
published_at	2026-06-14T12:55:00Z

value	0.00414
scoring_system	epss
scoring_elements	0.62178
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11755

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11759

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11760

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11761

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11762

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11763

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11764

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1764442
reference_id	1764442
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1764442

reference_url	https://security.archlinux.org/ASA-201910-15
reference_id	ASA-201910-15
reference_type
scores
url	https://security.archlinux.org/ASA-201910-15

reference_url	https://security.archlinux.org/ASA-201910-16
reference_id	ASA-201910-16
reference_type
scores
url	https://security.archlinux.org/ASA-201910-16

reference_url

https://security.archlinux.org/AVG-1054

reference_id

AVG-1054

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1054

reference_url

https://security.archlinux.org/AVG-1055

reference_id

AVG-1055

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1055

reference_url	https://security.gentoo.org/glsa/202003-10
reference_id	GLSA-202003-10
reference_type
scores
url	https://security.gentoo.org/glsa/202003-10

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_id

mfsa2019-33

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-33

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_id

mfsa2019-34

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-34

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_id

mfsa2019-35

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-35

reference_url	https://access.redhat.com/errata/RHSA-2019:3193
reference_id	RHSA-2019:3193
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3193

reference_url	https://access.redhat.com/errata/RHSA-2019:3196
reference_id	RHSA-2019:3196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3196

reference_url	https://access.redhat.com/errata/RHSA-2019:3210
reference_id	RHSA-2019:3210
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3210

reference_url	https://access.redhat.com/errata/RHSA-2019:3237
reference_id	RHSA-2019:3237
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3237

reference_url	https://access.redhat.com/errata/RHSA-2019:3281
reference_id	RHSA-2019:3281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3281

reference_url	https://access.redhat.com/errata/RHSA-2019:3756
reference_id	RHSA-2019:3756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3756

fixed_packages

url	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
purl	pkg:deb/debian/firefox-esr@68.2.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

url	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
purl	pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

purl pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-zj6v-hmj8-syfy

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie

aliases CVE-2019-11761

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x9nw-k6jw-pbhn

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@68.2.0esr-1%3Fdistro=trixie

Package Instance