Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
Typeapk
Namespacealpine
Namefirefox-esr
Version102.3.0-r0
Qualifiers
arch s390x
distroversion v3.21
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version102.4.0-r0
Latest_non_vulnerable_version115.6.0-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-4cvr-3dq8-a3bc
vulnerability_id VCID-4cvr-3dq8-a3bc
summary Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40962.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40962.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40962
reference_id
reference_type
scores
0
value 0.00276
scoring_system epss
scoring_elements 0.51323
published_at 2026-06-05T12:55:00Z
1
value 0.00276
scoring_system epss
scoring_elements 0.51299
published_at 2026-06-09T12:55:00Z
2
value 0.00276
scoring_system epss
scoring_elements 0.51329
published_at 2026-06-06T12:55:00Z
3
value 0.00276
scoring_system epss
scoring_elements 0.51262
published_at 2026-06-04T12:55:00Z
4
value 0.00276
scoring_system epss
scoring_elements 0.51278
published_at 2026-06-08T12:55:00Z
5
value 0.00276
scoring_system epss
scoring_elements 0.51308
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40962
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128797
reference_id 2128797
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128797
10
reference_url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1776655%2C1777574%2C1784835%2C1785109%2C1786502%2C1789440
reference_id buglist.cgi?bug_id=1776655%2C1777574%2C1784835%2C1785109%2C1786502%2C1789440
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T14:48:20Z/
url https://bugzilla.mozilla.org/buglist.cgi?bug_id=1776655%2C1777574%2C1784835%2C1785109%2C1786502%2C1789440
11
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
12
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
14
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T14:48:20Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
15
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
16
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T14:48:20Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
18
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-15T14:48:20Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
19
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
20
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
21
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
22
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
23
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
24
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
25
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
26
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
27
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
28
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
29
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
30
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40962
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4cvr-3dq8-a3bc
1
url VCID-5hg8-we4h-qyfd
vulnerability_id VCID-5hg8-we4h-qyfd
summary When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40956.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40956.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40956
reference_id
reference_type
scores
0
value 0.00169
scoring_system epss
scoring_elements 0.37827
published_at 2026-06-05T12:55:00Z
1
value 0.00169
scoring_system epss
scoring_elements 0.37774
published_at 2026-06-09T12:55:00Z
2
value 0.00169
scoring_system epss
scoring_elements 0.3783
published_at 2026-06-06T12:55:00Z
3
value 0.00169
scoring_system epss
scoring_elements 0.37735
published_at 2026-06-04T12:55:00Z
4
value 0.00169
scoring_system epss
scoring_elements 0.37762
published_at 2026-06-08T12:55:00Z
5
value 0.00169
scoring_system epss
scoring_elements 0.37799
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40956
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128795
reference_id 2128795
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128795
10
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
11
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:10:59Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:10:59Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:10:59Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
18
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
19
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
20
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
21
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
22
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
23
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
24
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
25
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
26
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
27
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
28
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
29
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1770094
reference_id show_bug.cgi?id=1770094
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:10:59Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1770094
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40956
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5hg8-we4h-qyfd
2
url VCID-dcxt-px8h-4kff
vulnerability_id VCID-dcxt-px8h-4kff
summary By injecting a cookie with certain special characters, an attacker on a shared subdomain which is not a secure context could set and thus overwrite cookies from a secure context, leading to session fixation and other attacks.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40958.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40958.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40958
reference_id
reference_type
scores
0
value 0.00259
scoring_system epss
scoring_elements 0.49529
published_at 2026-06-05T12:55:00Z
1
value 0.00259
scoring_system epss
scoring_elements 0.49506
published_at 2026-06-09T12:55:00Z
2
value 0.00259
scoring_system epss
scoring_elements 0.49539
published_at 2026-06-06T12:55:00Z
3
value 0.00259
scoring_system epss
scoring_elements 0.49466
published_at 2026-06-04T12:55:00Z
4
value 0.00259
scoring_system epss
scoring_elements 0.49494
published_at 2026-06-08T12:55:00Z
5
value 0.00259
scoring_system epss
scoring_elements 0.49522
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40958
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128794
reference_id 2128794
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128794
10
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
11
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:54:50Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:54:50Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:54:50Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
18
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
19
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
20
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
21
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
22
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
23
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
24
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
25
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
26
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
27
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
28
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
29
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1779993
reference_id show_bug.cgi?id=1779993
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:54:50Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1779993
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40958
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dcxt-px8h-4kff
3
url VCID-e8uq-d3ca-pqg3
vulnerability_id VCID-e8uq-d3ca-pqg3
summary An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3266.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3266.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3266
reference_id
reference_type
scores
0
value 0.00083
scoring_system epss
scoring_elements 0.24425
published_at 2026-06-05T12:55:00Z
1
value 0.00083
scoring_system epss
scoring_elements 0.24303
published_at 2026-06-09T12:55:00Z
2
value 0.00083
scoring_system epss
scoring_elements 0.24406
published_at 2026-06-06T12:55:00Z
3
value 0.00083
scoring_system epss
scoring_elements 0.24323
published_at 2026-06-04T12:55:00Z
4
value 0.00083
scoring_system epss
scoring_elements 0.24293
published_at 2026-06-08T12:55:00Z
5
value 0.00083
scoring_system epss
scoring_elements 0.24352
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3266
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2157739
reference_id 2157739
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2157739
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
11
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T15:57:13Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T15:57:13Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T15:57:13Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
16
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
17
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
18
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
19
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
20
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
21
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
22
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
23
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
24
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
25
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
26
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
27
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
28
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1767360
reference_id show_bug.cgi?id=1767360
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T15:57:13Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1767360
29
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
30
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-3266
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e8uq-d3ca-pqg3
4
url VCID-f3aw-rbax-guhq
vulnerability_id VCID-f3aw-rbax-guhq
summary Inconsistent data in instruction and data cache when creating wasm code could lead to a potentially exploitable crash.*This bug only affects Firefox on ARM64 platforms.*
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40957.json
reference_id
reference_type
scores
0
value 5.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40957.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40957
reference_id
reference_type
scores
0
value 0.00169
scoring_system epss
scoring_elements 0.37939
published_at 2026-06-05T12:55:00Z
1
value 0.00169
scoring_system epss
scoring_elements 0.37887
published_at 2026-06-09T12:55:00Z
2
value 0.00169
scoring_system epss
scoring_elements 0.37941
published_at 2026-06-06T12:55:00Z
3
value 0.00169
scoring_system epss
scoring_elements 0.37848
published_at 2026-06-04T12:55:00Z
4
value 0.00169
scoring_system epss
scoring_elements 0.37876
published_at 2026-06-08T12:55:00Z
5
value 0.00169
scoring_system epss
scoring_elements 0.3791
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40957
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128796
reference_id 2128796
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128796
10
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
11
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:09:12Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:09:12Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:09:12Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
18
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
19
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
20
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
21
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
22
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
23
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
24
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
25
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
26
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
27
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
28
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
29
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1777604
reference_id show_bug.cgi?id=1777604
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T16:09:12Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1777604
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40957
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f3aw-rbax-guhq
5
url VCID-mfux-4bvb-jbbk
vulnerability_id VCID-mfux-4bvb-jbbk
summary Concurrent use of the URL parser with non-UTF-8 data was not thread-safe. This could lead to a use-after-free causing a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40960.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40960.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40960
reference_id
reference_type
scores
0
value 0.00159
scoring_system epss
scoring_elements 0.3664
published_at 2026-06-05T12:55:00Z
1
value 0.00159
scoring_system epss
scoring_elements 0.36584
published_at 2026-06-09T12:55:00Z
2
value 0.00159
scoring_system epss
scoring_elements 0.36648
published_at 2026-06-06T12:55:00Z
3
value 0.00159
scoring_system epss
scoring_elements 0.36546
published_at 2026-06-04T12:55:00Z
4
value 0.00159
scoring_system epss
scoring_elements 0.36574
published_at 2026-06-08T12:55:00Z
5
value 0.00159
scoring_system epss
scoring_elements 0.36612
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40960
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128793
reference_id 2128793
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128793
10
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
11
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:51:26Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:51:26Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:51:26Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
18
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
19
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
20
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
21
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
22
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
23
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
24
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
25
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
26
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
27
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
28
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
29
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1787633
reference_id show_bug.cgi?id=1787633
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:51:26Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1787633
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40960
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mfux-4bvb-jbbk
6
url VCID-p8fa-uw4m-pbh9
vulnerability_id VCID-p8fa-uw4m-pbh9
summary During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40959.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40959.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-40959
reference_id
reference_type
scores
0
value 0.00134
scoring_system epss
scoring_elements 0.33022
published_at 2026-06-05T12:55:00Z
1
value 0.00134
scoring_system epss
scoring_elements 0.32985
published_at 2026-06-09T12:55:00Z
2
value 0.00134
scoring_system epss
scoring_elements 0.33035
published_at 2026-06-06T12:55:00Z
3
value 0.00134
scoring_system epss
scoring_elements 0.32917
published_at 2026-06-04T12:55:00Z
4
value 0.00134
scoring_system epss
scoring_elements 0.32966
published_at 2026-06-08T12:55:00Z
5
value 0.00134
scoring_system epss
scoring_elements 0.32997
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-40959
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3266
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40956
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40957
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40958
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40959
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40962
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2128792
reference_id 2128792
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2128792
10
reference_url https://security.gentoo.org/glsa/202209-18
reference_id GLSA-202209-18
reference_type
scores
url https://security.gentoo.org/glsa/202209-18
11
reference_url https://security.gentoo.org/glsa/202209-27
reference_id GLSA-202209-27
reference_type
scores
url https://security.gentoo.org/glsa/202209-27
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
reference_id mfsa2022-40
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-40
13
reference_url https://www.mozilla.org/security/advisories/mfsa2022-40/
reference_id mfsa2022-40
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:53:23Z/
url https://www.mozilla.org/security/advisories/mfsa2022-40/
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
reference_id mfsa2022-41
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-41
15
reference_url https://www.mozilla.org/security/advisories/mfsa2022-41/
reference_id mfsa2022-41
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:53:23Z/
url https://www.mozilla.org/security/advisories/mfsa2022-41/
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
reference_id mfsa2022-42
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2022-42
17
reference_url https://www.mozilla.org/security/advisories/mfsa2022-42/
reference_id mfsa2022-42
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:53:23Z/
url https://www.mozilla.org/security/advisories/mfsa2022-42/
18
reference_url https://access.redhat.com/errata/RHSA-2022:6700
reference_id RHSA-2022:6700
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6700
19
reference_url https://access.redhat.com/errata/RHSA-2022:6701
reference_id RHSA-2022:6701
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6701
20
reference_url https://access.redhat.com/errata/RHSA-2022:6702
reference_id RHSA-2022:6702
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6702
21
reference_url https://access.redhat.com/errata/RHSA-2022:6703
reference_id RHSA-2022:6703
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6703
22
reference_url https://access.redhat.com/errata/RHSA-2022:6707
reference_id RHSA-2022:6707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6707
23
reference_url https://access.redhat.com/errata/RHSA-2022:6708
reference_id RHSA-2022:6708
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6708
24
reference_url https://access.redhat.com/errata/RHSA-2022:6710
reference_id RHSA-2022:6710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6710
25
reference_url https://access.redhat.com/errata/RHSA-2022:6711
reference_id RHSA-2022:6711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6711
26
reference_url https://access.redhat.com/errata/RHSA-2022:6713
reference_id RHSA-2022:6713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6713
27
reference_url https://access.redhat.com/errata/RHSA-2022:6715
reference_id RHSA-2022:6715
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6715
28
reference_url https://access.redhat.com/errata/RHSA-2022:6716
reference_id RHSA-2022:6716
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6716
29
reference_url https://access.redhat.com/errata/RHSA-2022:6717
reference_id RHSA-2022:6717
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:6717
30
reference_url https://bugzilla.mozilla.org/show_bug.cgi?id=1782211
reference_id show_bug.cgi?id=1782211
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T14:53:23Z/
url https://bugzilla.mozilla.org/show_bug.cgi?id=1782211
31
reference_url https://usn.ubuntu.com/5649-1/
reference_id USN-5649-1
reference_type
scores
url https://usn.ubuntu.com/5649-1/
32
reference_url https://usn.ubuntu.com/5724-1/
reference_id USN-5724-1
reference_type
scores
url https://usn.ubuntu.com/5724-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
purl pkg:apk/alpine/firefox-esr@102.3.0-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community
aliases CVE-2022-40959
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p8fa-uw4m-pbh9
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@102.3.0-r0%3Farch=s390x&distroversion=v3.21&reponame=community