Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community

Type apk

Namespace alpine

Name firefox-esr

Version 68.1.0-r0

Qualifiers

arch	aarch64
distroversion	v3.15
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 68.2.0-r0

Latest_non_vulnerable_version 91.10.0-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-ccbk-bcjn-9ygr

vulnerability_id VCID-ccbk-bcjn-9ygr

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11740.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11740.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11740

reference_id

reference_type

scores

value	0.015
scoring_system	epss
scoring_elements	0.81204
published_at	2026-04-29T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81136
published_at	2026-04-09T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81153
published_at	2026-04-11T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.8114
published_at	2026-04-12T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81133
published_at	2026-04-13T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.8117
published_at	2026-04-16T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81172
published_at	2026-04-18T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81169
published_at	2026-04-21T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81192
published_at	2026-04-24T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81199
published_at	2026-04-26T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81069
published_at	2026-04-01T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81078
published_at	2026-04-02T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81102
published_at	2026-04-07T12:55:00Z

value	0.015
scoring_system	epss
scoring_elements	0.81129
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11740

reference_url	https://bugzilla.mozilla.org/buglist.cgi?bug_id=1563133%2C1573160
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/buglist.cgi?bug_id=1563133%2C1573160

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748652
reference_id	1748652
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748652

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::
reference_id	cpe:2.3:a:mozilla:firefox_esr::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:::::::*
reference_id	cpe:2.3:o:opensuse:leap:15.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_id	cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11740

reference_id

CVE-2019-11740

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11740

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11740

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ccbk-bcjn-9ygr

url VCID-hpnv-s73g-8yhp

vulnerability_id VCID-hpnv-s73g-8yhp

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9812.json

reference_id

reference_type

scores

value	9.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9812.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9812

reference_id

reference_type

scores

value	0.00396
scoring_system	epss
scoring_elements	0.60437
published_at	2026-04-29T12:55:00Z

value	0.00396
scoring_system	epss
scoring_elements	0.60435
published_at	2026-04-24T12:55:00Z

value	0.00396
scoring_system	epss
scoring_elements	0.6045
published_at	2026-04-26T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66827
published_at	2026-04-08T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66742
published_at	2026-04-01T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66848
published_at	2026-04-12T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66816
published_at	2026-04-13T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66849
published_at	2026-04-16T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66863
published_at	2026-04-18T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66846
published_at	2026-04-21T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.6678
published_at	2026-04-02T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66806
published_at	2026-04-04T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66778
published_at	2026-04-07T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66841
published_at	2026-04-09T12:55:00Z

value	0.0052
scoring_system	epss
scoring_elements	0.66861
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748660
reference_id	1748660
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748660

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-9812

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hpnv-s73g-8yhp

url VCID-s326-zdyp-67ev

vulnerability_id VCID-s326-zdyp-67ev

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11742.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11742.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11742

reference_id

reference_type

scores

value	0.0053
scoring_system	epss
scoring_elements	0.67284
published_at	2026-04-29T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67238
published_at	2026-04-08T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67252
published_at	2026-04-09T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67272
published_at	2026-04-11T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67258
published_at	2026-04-16T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67223
published_at	2026-04-13T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.6727
published_at	2026-04-18T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67251
published_at	2026-04-21T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67271
published_at	2026-04-24T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67282
published_at	2026-04-26T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.6715
published_at	2026-04-01T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67187
published_at	2026-04-07T12:55:00Z

value	0.0053
scoring_system	epss
scoring_elements	0.67211
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11742

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1559715
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1559715

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748653
reference_id	1748653
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748653

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::
reference_id	cpe:2.3:a:mozilla:firefox_esr::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11742

reference_id

CVE-2019-11742

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11742

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11742

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s326-zdyp-67ev

url VCID-scqu-uppe-w3h3

vulnerability_id VCID-scqu-uppe-w3h3

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11744.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11744.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11744

reference_id

reference_type

scores

value	0.0066
scoring_system	epss
scoring_elements	0.71191
published_at	2026-04-29T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71096
published_at	2026-04-09T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71119
published_at	2026-04-11T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71105
published_at	2026-04-12T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71088
published_at	2026-04-13T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71134
published_at	2026-04-16T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71142
published_at	2026-04-18T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71121
published_at	2026-04-21T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71179
published_at	2026-04-24T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71187
published_at	2026-04-26T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.7104
published_at	2026-04-01T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71049
published_at	2026-04-02T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71066
published_at	2026-04-04T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71041
published_at	2026-04-07T12:55:00Z

value	0.0066
scoring_system	epss
scoring_elements	0.71084
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11744

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1562033
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1562033

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748655
reference_id	1748655
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748655

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11744

reference_id

CVE-2019-11744

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11744

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11744

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-scqu-uppe-w3h3

url VCID-tfa3-jx19-h7bz

vulnerability_id VCID-tfa3-jx19-h7bz

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11746.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11746.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11746

reference_id

reference_type

scores

value	0.00651
scoring_system	epss
scoring_elements	0.70956
published_at	2026-04-29T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70869
published_at	2026-04-09T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70892
published_at	2026-04-11T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70876
published_at	2026-04-12T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70861
published_at	2026-04-13T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70907
published_at	2026-04-16T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70913
published_at	2026-04-18T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70893
published_at	2026-04-21T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70947
published_at	2026-04-24T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70957
published_at	2026-04-26T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70802
published_at	2026-04-01T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70816
published_at	2026-04-02T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70835
published_at	2026-04-04T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.7081
published_at	2026-04-07T12:55:00Z

value	0.00651
scoring_system	epss
scoring_elements	0.70853
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11746

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1564449
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1564449

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748656
reference_id	1748656
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748656

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::
reference_id	cpe:2.3:a:mozilla:firefox_esr::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11746

reference_id

CVE-2019-11746

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11746

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11746

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tfa3-jx19-h7bz

url VCID-tjkj-zeeh-xqcy

vulnerability_id VCID-tjkj-zeeh-xqcy

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11752.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11752.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11752

reference_id

reference_type

scores

value	0.00893
scoring_system	epss
scoring_elements	0.75661
published_at	2026-04-29T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75583
published_at	2026-04-09T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75608
published_at	2026-04-11T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75588
published_at	2026-04-12T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75582
published_at	2026-04-13T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75619
published_at	2026-04-16T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75623
published_at	2026-04-18T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75607
published_at	2026-04-21T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75645
published_at	2026-04-24T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.7565
published_at	2026-04-26T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75518
published_at	2026-04-01T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.7552
published_at	2026-04-02T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.7555
published_at	2026-04-04T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.7553
published_at	2026-04-07T12:55:00Z

value	0.00893
scoring_system	epss
scoring_elements	0.75572
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11752

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1501152
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1501152

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748657
reference_id	1748657
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748657

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::
reference_id	cpe:2.3:a:mozilla:firefox_esr::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11752

reference_id

CVE-2019-11752

reference_type

scores

value	9.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:C/I:C/A:C

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11752

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11752

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tjkj-zeeh-xqcy

url VCID-xt5q-bfq6-73bn

vulnerability_id VCID-xt5q-bfq6-73bn

summary

Multiple vulnerabilities have been found in Mozilla Firefox, the
    worst of which could result in the arbitrary execution of code.

references

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00011.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00017.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11743.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11743.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-11743

reference_id

reference_type

scores

value	0.00989
scoring_system	epss
scoring_elements	0.76951
published_at	2026-04-29T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76856
published_at	2026-04-09T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76885
published_at	2026-04-11T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76865
published_at	2026-04-12T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76859
published_at	2026-04-13T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76903
published_at	2026-04-16T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76907
published_at	2026-04-18T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.769
published_at	2026-04-21T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76931
published_at	2026-04-24T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76939
published_at	2026-04-26T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76801
published_at	2026-04-01T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76805
published_at	2026-04-02T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76834
published_at	2026-04-04T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76814
published_at	2026-04-07T12:55:00Z

value	0.00989
scoring_system	epss
scoring_elements	0.76846
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-11743

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1560495
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1560495

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11742

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11744

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11746

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11752

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9812

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://w3c.github.io/navigation-timing
reference_id
reference_type
scores
url	https://w3c.github.io/navigation-timing

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-25/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-25/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-26/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-26/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-27/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-27/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-29/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-29/

reference_url	https://www.mozilla.org/security/advisories/mfsa2019-30/
reference_id
reference_type
scores
url	https://www.mozilla.org/security/advisories/mfsa2019-30/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1748654
reference_id	1748654
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1748654

reference_url	https://security.archlinux.org/ASA-201909-2
reference_id	ASA-201909-2
reference_type
scores
url	https://security.archlinux.org/ASA-201909-2

reference_url

https://security.archlinux.org/AVG-1036

reference_id

AVG-1036

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1036

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::
reference_id	cpe:2.3:a:mozilla:firefox_esr::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox_esr::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::
reference_id	cpe:2.3:a:mozilla:thunderbird::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-11743

reference_id

CVE-2019-11743

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:N

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2019-11743

reference_url	https://security.gentoo.org/glsa/201911-07
reference_id	GLSA-201911-07
reference_type
scores
url	https://security.gentoo.org/glsa/201911-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_id

mfsa2019-25

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-25

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_id

mfsa2019-26

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-26

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_id

mfsa2019-27

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-27

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_id

mfsa2019-29

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-29

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_id

mfsa2019-30

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-30

reference_url	https://access.redhat.com/errata/RHSA-2019:2663
reference_id	RHSA-2019:2663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2663

reference_url	https://access.redhat.com/errata/RHSA-2019:2694
reference_id	RHSA-2019:2694
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2694

reference_url	https://access.redhat.com/errata/RHSA-2019:2729
reference_id	RHSA-2019:2729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2729

reference_url	https://access.redhat.com/errata/RHSA-2019:2773
reference_id	RHSA-2019:2773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2773

reference_url	https://access.redhat.com/errata/RHSA-2019:2774
reference_id	RHSA-2019:2774
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2774

reference_url	https://access.redhat.com/errata/RHSA-2019:2807
reference_id	RHSA-2019:2807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2807

reference_url	https://usn.ubuntu.com/4122-1/
reference_id	USN-4122-1
reference_type
scores
url	https://usn.ubuntu.com/4122-1/

reference_url	https://usn.ubuntu.com/4150-1/
reference_id	USN-4150-1
reference_type
scores
url	https://usn.ubuntu.com/4150-1/

fixed_packages

url	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/firefox-esr@68.1.0-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

aliases CVE-2019-11743

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xt5q-bfq6-73bn

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@68.1.0-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

Package Instance