{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","type":"deb","namespace":"debian","name":"firefox-esr","version":"140.11.0esr-1~deb11u1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"140.11.0esr-1~deb12u1","latest_non_vulnerable_version":"140.11.0esr-1~deb13u1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30185?format=json","vulnerability_id":"VCID-6q8z-79ha-tua9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8968.json","reference_id":"","reference_type":"","scores":[{"value":"3.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8968.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8968","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19512","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19685","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8968"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8968","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8968"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479846","reference_id":"2479846","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479846"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:23:50Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:23:50Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:23:50Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:23:50Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2030467","reference_id":"show_bug.cgi?id=2030467","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:23:50Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2030467"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8968"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6q8z-79ha-tua9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67123?format=json","vulnerability_id":"VCID-6zqp-wvb4-k3g7","summary":"Incorrect boundary conditions in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8388.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8388.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8388","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13557","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13673","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8388"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8388","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8388"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476469","reference_id":"2476469","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476469"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-45/","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T18:28:57Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-45/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T18:28:57Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T18:28:57Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T18:28:57Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2036978","reference_id":"show_bug.cgi?id=2036978","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-12T18:28:57Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2036978"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8388"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6zqp-wvb4-k3g7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30174?format=json","vulnerability_id":"VCID-8kvs-edm7-y7gs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8957.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8957.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8957","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14019","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13902","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8957"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8957","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8957"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479880","reference_id":"2479880","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479880"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:29Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:29Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:29Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:29Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2033850","reference_id":"show_bug.cgi?id=2033850","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:29Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2033850"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8957"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8kvs-edm7-y7gs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30167?format=json","vulnerability_id":"VCID-9aym-2tkq-4qgv","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8950.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8950.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8950","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05131","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05141","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8950"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8950","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8950"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479853","reference_id":"2479853","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479853"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:47:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:47:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:47:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:47:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1965430","reference_id":"show_bug.cgi?id=1965430","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:47:45Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1965430"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8950"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9aym-2tkq-4qgv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30178?format=json","vulnerability_id":"VCID-9yp7-z45u-yua9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8961.json","reference_id":"","reference_type":"","scores":[{"value":"3.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8961.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8961","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10585","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10645","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8961"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8961","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8961"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479871","reference_id":"2479871","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479871"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-20T15:11:37Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-20T15:11:37Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-20T15:11:37Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-20T15:11:37Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1962625","reference_id":"show_bug.cgi?id=1962625","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-20T15:11:37Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1962625"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8961"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9yp7-z45u-yua9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30151?format=json","vulnerability_id":"VCID-bjse-kfz6-yubh","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8401.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8401.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8401","reference_id":"","reference_type":"","scores":[{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.24459","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.24654","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8401"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476492","reference_id":"2476492","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476492"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-45/","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-14T16:46:22Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-45/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-14T16:46:22Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-14T16:46:22Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-14T16:46:22Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038679","reference_id":"show_bug.cgi?id=2038679","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-14T16:46:22Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038679"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8401"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bjse-kfz6-yubh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30173?format=json","vulnerability_id":"VCID-cqjy-g26x-7uet","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8956.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8956.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8956","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20084","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20259","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8956"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8956","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8956"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479839","reference_id":"2479839","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479839"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:37:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:37:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:37:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:37:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2032427","reference_id":"show_bug.cgi?id=2032427","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:37:45Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2032427"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8956"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cqjy-g26x-7uet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30175?format=json","vulnerability_id":"VCID-de38-r981-eyfz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8958.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8958.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8958","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18357","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.1852","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8958"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8958","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8958"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479848","reference_id":"2479848","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479848"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:03:48Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:03:48Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:03:48Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:03:48Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2034713","reference_id":"show_bug.cgi?id=2034713","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T15:03:48Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2034713"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8958"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-de38-r981-eyfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30192?format=json","vulnerability_id":"VCID-ds7y-3n6g-effu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8975.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8975.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8975","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14688","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14809","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8975"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479840","reference_id":"2479840","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479840"},{"reference_url":"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1860195%2C2029325%2C2029429%2C2029910%2C2035915%2C2038678%2C2038669","reference_id":"buglist.cgi?bug_id=1860195%2C2029325%2C2029429%2C2029910%2C2035915%2C2038678%2C2038669","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://bugzilla.mozilla.org/buglist.cgi?bug_id=1860195%2C2029325%2C2029429%2C2029910%2C2035915%2C2038678%2C2038669"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:35Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8975"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ds7y-3n6g-effu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67082?format=json","vulnerability_id":"VCID-f23d-zhye-6ffm","summary":"Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR 115.36, Firefox ESR 140.11, and Thunderbird 140.11.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8391.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8391.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8391","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28789","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.2899","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8391"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8391","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8391"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476475","reference_id":"2476475","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2476475"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-45"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-45/","reference_id":"mfsa2026-45","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:47:19Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-45/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:47:19Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:47:19Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:47:19Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038575","reference_id":"show_bug.cgi?id=2038575","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-13T15:47:19Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038575"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8391"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f23d-zhye-6ffm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30164?format=json","vulnerability_id":"VCID-fvb7-4zay-gyah","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8947.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8947.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8947","reference_id":"","reference_type":"","scores":[{"value":"0.00065","scoring_system":"epss","scoring_elements":"0.20278","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00065","scoring_system":"epss","scoring_elements":"0.20454","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8947"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479873","reference_id":"2479873","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479873"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038439","reference_id":"show_bug.cgi?id=2038439","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:14:49Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2038439"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8947"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fvb7-4zay-gyah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30179?format=json","vulnerability_id":"VCID-g2gc-1uzk-u7h7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8962.json","reference_id":"","reference_type":"","scores":[{"value":"3.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8962.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8962","reference_id":"","reference_type":"","scores":[{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15202","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.1533","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8962"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479876","reference_id":"2479876","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479876"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T15:12:43Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T15:12:43Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T15:12:43Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T15:12:43Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2004804","reference_id":"show_bug.cgi?id=2004804","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T15:12:43Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2004804"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8962"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g2gc-1uzk-u7h7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30187?format=json","vulnerability_id":"VCID-kk31-84a3-aqcs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8970.json","reference_id":"","reference_type":"","scores":[{"value":"3.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8970.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8970","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14019","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13902","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8970"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8970","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8970"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479852","reference_id":"2479852","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479852"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:30Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:30Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:30Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:30Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2032174","reference_id":"show_bug.cgi?id=2032174","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:30Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2032174"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8970"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kk31-84a3-aqcs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30163?format=json","vulnerability_id":"VCID-pz88-qvt7-wufc","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8946.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8946.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8946","reference_id":"","reference_type":"","scores":[{"value":"0.00049","scoring_system":"epss","scoring_elements":"0.15727","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00049","scoring_system":"epss","scoring_elements":"0.15866","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8946"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479849","reference_id":"2479849","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479849"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2029070","reference_id":"show_bug.cgi?id=2029070","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:09:24Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2029070"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8946"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pz88-qvt7-wufc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30171?format=json","vulnerability_id":"VCID-qbvb-jytq-hyew","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8954.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8954.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8954","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14195","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14077","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8954"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479847","reference_id":"2479847","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479847"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:15:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:15:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:15:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:15:45Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2030747","reference_id":"show_bug.cgi?id=2030747","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-19T14:15:45Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2030747"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8954"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qbvb-jytq-hyew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30170?format=json","vulnerability_id":"VCID-u5sg-wv5m-aqad","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8953.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8953.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8953","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14809","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14688","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8953"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8953","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8953"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479860","reference_id":"2479860","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479860"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-47"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-47/","reference_id":"mfsa2026-47","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-47/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2029511","reference_id":"show_bug.cgi?id=2029511","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-19T16:02:27Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2029511"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8953"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u5sg-wv5m-aqad"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30172?format=json","vulnerability_id":"VCID-xxcc-wxdw-sbah","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8955.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8955.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8955","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14019","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13902","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8955"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8955","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8955"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479842","reference_id":"2479842","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479842"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:27Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"},{"reference_url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2031064","reference_id":"show_bug.cgi?id=2031064","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:27Z/"}],"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=2031064"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8955"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xxcc-wxdw-sbah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30191?format=json","vulnerability_id":"VCID-zmv9-ht8a-2kc6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8974.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8974.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8974","reference_id":"","reference_type":"","scores":[{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.14484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.14363","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-8974"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8974","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8974"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479855","reference_id":"2479855","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2479855"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-46"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-46/","reference_id":"mfsa2026-46","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-46/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-48"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-48/","reference_id":"mfsa2026-48","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-48/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-50"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-50/","reference_id":"mfsa2026-50","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-50/"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2026-51"},{"reference_url":"https://www.mozilla.org/security/advisories/mfsa2026-51/","reference_id":"mfsa2026-51","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-05-20T03:55:33Z/"}],"url":"https://www.mozilla.org/security/advisories/mfsa2026-51/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21378","reference_id":"RHSA-2026:21378","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21380","reference_id":"RHSA-2026:21380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21381","reference_id":"RHSA-2026:21381","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21382","reference_id":"RHSA-2026:21382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21382"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22325","reference_id":"RHSA-2026:22325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22643","reference_id":"RHSA-2026:22643","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22643"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/41784?format=json","purl":"pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@115.14.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41782?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41786?format=json","purl":"pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.10.2esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42317?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42316?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42318?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/41785?format=json","purl":"pkg:deb/debian/firefox-esr@140.11.0esr-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-zj6v-hmj8-syfy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1%3Fdistro=trixie"}],"aliases":["CVE-2026-8974"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zmv9-ht8a-2kc6"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox-esr@140.11.0esr-1~deb11u1%3Fdistro=trixie"}