Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
Typeapk
Namespacealpine
Namefirefox-esr
Version78.7.0-r0
Qualifiers
arch aarch64
distroversion v3.23
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version78.8.0-r0
Latest_non_vulnerable_version115.6.0-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-j7vw-1pq3-efgp
vulnerability_id VCID-j7vw-1pq3-efgp
summary Performing garbage collection on re-declared JavaScript variables resulted in a user-after-poison, and a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23960.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23960.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23960
reference_id
reference_type
scores
0
value 0.00285
scoring_system epss
scoring_elements 0.52274
published_at 2026-06-09T12:55:00Z
1
value 0.00285
scoring_system epss
scoring_elements 0.52234
published_at 2026-06-04T12:55:00Z
2
value 0.00285
scoring_system epss
scoring_elements 0.52294
published_at 2026-06-05T12:55:00Z
3
value 0.00285
scoring_system epss
scoring_elements 0.52302
published_at 2026-06-06T12:55:00Z
4
value 0.00285
scoring_system epss
scoring_elements 0.52282
published_at 2026-06-07T12:55:00Z
5
value 0.00285
scoring_system epss
scoring_elements 0.52253
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23960
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1920650
reference_id 1920650
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1920650
11
reference_url https://security.archlinux.org/ASA-202102-1
reference_id ASA-202102-1
reference_type
scores
url https://security.archlinux.org/ASA-202102-1
12
reference_url https://security.archlinux.org/ASA-202102-2
reference_id ASA-202102-2
reference_type
scores
url https://security.archlinux.org/ASA-202102-2
13
reference_url https://security.archlinux.org/AVG-1492
reference_id AVG-1492
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1492
14
reference_url https://security.archlinux.org/AVG-1496
reference_id AVG-1496
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1496
15
reference_url https://security.gentoo.org/glsa/202102-01
reference_id GLSA-202102-01
reference_type
scores
url https://security.gentoo.org/glsa/202102-01
16
reference_url https://security.gentoo.org/glsa/202102-02
reference_id GLSA-202102-02
reference_type
scores
url https://security.gentoo.org/glsa/202102-02
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
reference_id mfsa2021-03
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
reference_id mfsa2021-04
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
19
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
reference_id mfsa2021-05
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
20
reference_url https://access.redhat.com/errata/RHSA-2021:0285
reference_id RHSA-2021:0285
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0285
21
reference_url https://access.redhat.com/errata/RHSA-2021:0288
reference_id RHSA-2021:0288
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0288
22
reference_url https://access.redhat.com/errata/RHSA-2021:0289
reference_id RHSA-2021:0289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0289
23
reference_url https://access.redhat.com/errata/RHSA-2021:0290
reference_id RHSA-2021:0290
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0290
24
reference_url https://access.redhat.com/errata/RHSA-2021:0297
reference_id RHSA-2021:0297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0297
25
reference_url https://access.redhat.com/errata/RHSA-2021:0298
reference_id RHSA-2021:0298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0298
26
reference_url https://access.redhat.com/errata/RHSA-2021:0299
reference_id RHSA-2021:0299
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0299
27
reference_url https://access.redhat.com/errata/RHSA-2021:0397
reference_id RHSA-2021:0397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0397
28
reference_url https://usn.ubuntu.com/4717-1/
reference_id USN-4717-1
reference_type
scores
url https://usn.ubuntu.com/4717-1/
29
reference_url https://usn.ubuntu.com/4736-1/
reference_id USN-4736-1
reference_type
scores
url https://usn.ubuntu.com/4736-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2021-23960
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j7vw-1pq3-efgp
1
url VCID-njy9-s1vq-n3f8
vulnerability_id VCID-njy9-s1vq-n3f8
summary If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23953.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23953.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23953
reference_id
reference_type
scores
0
value 0.00296
scoring_system epss
scoring_elements 0.53231
published_at 2026-06-09T12:55:00Z
1
value 0.00296
scoring_system epss
scoring_elements 0.53181
published_at 2026-06-04T12:55:00Z
2
value 0.00296
scoring_system epss
scoring_elements 0.53242
published_at 2026-06-05T12:55:00Z
3
value 0.00296
scoring_system epss
scoring_elements 0.5325
published_at 2026-06-06T12:55:00Z
4
value 0.00296
scoring_system epss
scoring_elements 0.53233
published_at 2026-06-07T12:55:00Z
5
value 0.00296
scoring_system epss
scoring_elements 0.53207
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23953
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1920646
reference_id 1920646
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1920646
11
reference_url https://security.archlinux.org/ASA-202102-1
reference_id ASA-202102-1
reference_type
scores
url https://security.archlinux.org/ASA-202102-1
12
reference_url https://security.archlinux.org/ASA-202102-2
reference_id ASA-202102-2
reference_type
scores
url https://security.archlinux.org/ASA-202102-2
13
reference_url https://security.archlinux.org/AVG-1492
reference_id AVG-1492
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1492
14
reference_url https://security.archlinux.org/AVG-1496
reference_id AVG-1496
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1496
15
reference_url https://security.gentoo.org/glsa/202102-01
reference_id GLSA-202102-01
reference_type
scores
url https://security.gentoo.org/glsa/202102-01
16
reference_url https://security.gentoo.org/glsa/202102-02
reference_id GLSA-202102-02
reference_type
scores
url https://security.gentoo.org/glsa/202102-02
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
reference_id mfsa2021-03
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
reference_id mfsa2021-04
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
19
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
reference_id mfsa2021-05
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
20
reference_url https://access.redhat.com/errata/RHSA-2021:0285
reference_id RHSA-2021:0285
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0285
21
reference_url https://access.redhat.com/errata/RHSA-2021:0288
reference_id RHSA-2021:0288
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0288
22
reference_url https://access.redhat.com/errata/RHSA-2021:0289
reference_id RHSA-2021:0289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0289
23
reference_url https://access.redhat.com/errata/RHSA-2021:0290
reference_id RHSA-2021:0290
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0290
24
reference_url https://access.redhat.com/errata/RHSA-2021:0297
reference_id RHSA-2021:0297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0297
25
reference_url https://access.redhat.com/errata/RHSA-2021:0298
reference_id RHSA-2021:0298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0298
26
reference_url https://access.redhat.com/errata/RHSA-2021:0299
reference_id RHSA-2021:0299
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0299
27
reference_url https://access.redhat.com/errata/RHSA-2021:0397
reference_id RHSA-2021:0397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0397
28
reference_url https://usn.ubuntu.com/4717-1/
reference_id USN-4717-1
reference_type
scores
url https://usn.ubuntu.com/4717-1/
29
reference_url https://usn.ubuntu.com/4736-1/
reference_id USN-4736-1
reference_type
scores
url https://usn.ubuntu.com/4736-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2021-23953
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-njy9-s1vq-n3f8
2
url VCID-tpfc-xpfq-s3e8
vulnerability_id VCID-tpfc-xpfq-s3e8
summary Mozilla developers Alexis Beingessner, Christian Holler, Andrew McCreight, Tyson Smith, Jon Coppeard, André Bargull, Jason Kratzer, Jesse Schwartzentruber, Steve Fink, Byron Campen reported memory safety bugs present in Firefox 84 and Firefox ESR 78.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23964.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23964.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23964
reference_id
reference_type
scores
0
value 0.00285
scoring_system epss
scoring_elements 0.52274
published_at 2026-06-09T12:55:00Z
1
value 0.00285
scoring_system epss
scoring_elements 0.52234
published_at 2026-06-04T12:55:00Z
2
value 0.00285
scoring_system epss
scoring_elements 0.52294
published_at 2026-06-05T12:55:00Z
3
value 0.00285
scoring_system epss
scoring_elements 0.52302
published_at 2026-06-06T12:55:00Z
4
value 0.00285
scoring_system epss
scoring_elements 0.52282
published_at 2026-06-07T12:55:00Z
5
value 0.00285
scoring_system epss
scoring_elements 0.52253
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23964
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1920651
reference_id 1920651
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1920651
11
reference_url https://security.archlinux.org/ASA-202102-1
reference_id ASA-202102-1
reference_type
scores
url https://security.archlinux.org/ASA-202102-1
12
reference_url https://security.archlinux.org/ASA-202102-2
reference_id ASA-202102-2
reference_type
scores
url https://security.archlinux.org/ASA-202102-2
13
reference_url https://security.archlinux.org/AVG-1492
reference_id AVG-1492
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1492
14
reference_url https://security.archlinux.org/AVG-1496
reference_id AVG-1496
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1496
15
reference_url https://security.gentoo.org/glsa/202102-01
reference_id GLSA-202102-01
reference_type
scores
url https://security.gentoo.org/glsa/202102-01
16
reference_url https://security.gentoo.org/glsa/202102-02
reference_id GLSA-202102-02
reference_type
scores
url https://security.gentoo.org/glsa/202102-02
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
reference_id mfsa2021-03
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
reference_id mfsa2021-04
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
19
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
reference_id mfsa2021-05
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
20
reference_url https://access.redhat.com/errata/RHSA-2021:0285
reference_id RHSA-2021:0285
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0285
21
reference_url https://access.redhat.com/errata/RHSA-2021:0288
reference_id RHSA-2021:0288
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0288
22
reference_url https://access.redhat.com/errata/RHSA-2021:0289
reference_id RHSA-2021:0289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0289
23
reference_url https://access.redhat.com/errata/RHSA-2021:0290
reference_id RHSA-2021:0290
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0290
24
reference_url https://access.redhat.com/errata/RHSA-2021:0297
reference_id RHSA-2021:0297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0297
25
reference_url https://access.redhat.com/errata/RHSA-2021:0298
reference_id RHSA-2021:0298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0298
26
reference_url https://access.redhat.com/errata/RHSA-2021:0299
reference_id RHSA-2021:0299
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0299
27
reference_url https://access.redhat.com/errata/RHSA-2021:0397
reference_id RHSA-2021:0397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0397
28
reference_url https://usn.ubuntu.com/4717-1/
reference_id USN-4717-1
reference_type
scores
url https://usn.ubuntu.com/4717-1/
29
reference_url https://usn.ubuntu.com/4736-1/
reference_id USN-4736-1
reference_type
scores
url https://usn.ubuntu.com/4736-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2021-23964
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tpfc-xpfq-s3e8
3
url VCID-ucv2-xwfv-zyge
vulnerability_id VCID-ucv2-xwfv-zyge
summary When a HTTPS pages was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have intercepted the request for the secure page despite the iframe not being a secure context due to the (insecure) framing.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26976.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26976.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-26976
reference_id
reference_type
scores
0
value 0.01254
scoring_system epss
scoring_elements 0.79731
published_at 2026-06-09T12:55:00Z
1
value 0.01254
scoring_system epss
scoring_elements 0.79697
published_at 2026-06-04T12:55:00Z
2
value 0.01254
scoring_system epss
scoring_elements 0.79723
published_at 2026-06-07T12:55:00Z
3
value 0.01254
scoring_system epss
scoring_elements 0.79728
published_at 2026-06-06T12:55:00Z
4
value 0.01254
scoring_system epss
scoring_elements 0.79712
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-26976
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1920649
reference_id 1920649
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1920649
11
reference_url https://security.archlinux.org/ASA-202012-25
reference_id ASA-202012-25
reference_type
scores
url https://security.archlinux.org/ASA-202012-25
12
reference_url https://security.archlinux.org/ASA-202102-2
reference_id ASA-202102-2
reference_type
scores
url https://security.archlinux.org/ASA-202102-2
13
reference_url https://security.archlinux.org/AVG-1362
reference_id AVG-1362
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1362
14
reference_url https://security.archlinux.org/AVG-1496
reference_id AVG-1496
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1496
15
reference_url https://security.gentoo.org/glsa/202102-02
reference_id GLSA-202102-02
reference_type
scores
url https://security.gentoo.org/glsa/202102-02
16
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2020-54
reference_id mfsa2020-54
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2020-54
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
reference_id mfsa2021-04
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
reference_id mfsa2021-05
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
19
reference_url https://access.redhat.com/errata/RHSA-2021:0285
reference_id RHSA-2021:0285
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0285
20
reference_url https://access.redhat.com/errata/RHSA-2021:0288
reference_id RHSA-2021:0288
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0288
21
reference_url https://access.redhat.com/errata/RHSA-2021:0289
reference_id RHSA-2021:0289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0289
22
reference_url https://access.redhat.com/errata/RHSA-2021:0290
reference_id RHSA-2021:0290
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0290
23
reference_url https://access.redhat.com/errata/RHSA-2021:0297
reference_id RHSA-2021:0297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0297
24
reference_url https://access.redhat.com/errata/RHSA-2021:0298
reference_id RHSA-2021:0298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0298
25
reference_url https://access.redhat.com/errata/RHSA-2021:0299
reference_id RHSA-2021:0299
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0299
26
reference_url https://access.redhat.com/errata/RHSA-2021:0397
reference_id RHSA-2021:0397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0397
27
reference_url https://usn.ubuntu.com/4671-1/
reference_id USN-4671-1
reference_type
scores
url https://usn.ubuntu.com/4671-1/
28
reference_url https://usn.ubuntu.com/4736-1/
reference_id USN-4736-1
reference_type
scores
url https://usn.ubuntu.com/4736-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2020-26976
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ucv2-xwfv-zyge
4
url VCID-w7xr-wxmq-u7dw
vulnerability_id VCID-w7xr-wxmq-u7dw
summary Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23954.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23954.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23954
reference_id
reference_type
scores
0
value 0.0025
scoring_system epss
scoring_elements 0.48465
published_at 2026-06-09T12:55:00Z
1
value 0.0025
scoring_system epss
scoring_elements 0.48431
published_at 2026-06-04T12:55:00Z
2
value 0.0025
scoring_system epss
scoring_elements 0.48494
published_at 2026-06-05T12:55:00Z
3
value 0.0025
scoring_system epss
scoring_elements 0.485
published_at 2026-06-06T12:55:00Z
4
value 0.0025
scoring_system epss
scoring_elements 0.48482
published_at 2026-06-07T12:55:00Z
5
value 0.0025
scoring_system epss
scoring_elements 0.48453
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23954
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964
9
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1920648
reference_id 1920648
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1920648
11
reference_url https://security.archlinux.org/ASA-202102-1
reference_id ASA-202102-1
reference_type
scores
url https://security.archlinux.org/ASA-202102-1
12
reference_url https://security.archlinux.org/ASA-202102-2
reference_id ASA-202102-2
reference_type
scores
url https://security.archlinux.org/ASA-202102-2
13
reference_url https://security.archlinux.org/AVG-1492
reference_id AVG-1492
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1492
14
reference_url https://security.archlinux.org/AVG-1496
reference_id AVG-1496
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1496
15
reference_url https://security.gentoo.org/glsa/202102-01
reference_id GLSA-202102-01
reference_type
scores
url https://security.gentoo.org/glsa/202102-01
16
reference_url https://security.gentoo.org/glsa/202102-02
reference_id GLSA-202102-02
reference_type
scores
url https://security.gentoo.org/glsa/202102-02
17
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
reference_id mfsa2021-03
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-03
18
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
reference_id mfsa2021-04
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-04
19
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
reference_id mfsa2021-05
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-05
20
reference_url https://access.redhat.com/errata/RHSA-2021:0285
reference_id RHSA-2021:0285
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0285
21
reference_url https://access.redhat.com/errata/RHSA-2021:0288
reference_id RHSA-2021:0288
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0288
22
reference_url https://access.redhat.com/errata/RHSA-2021:0289
reference_id RHSA-2021:0289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0289
23
reference_url https://access.redhat.com/errata/RHSA-2021:0290
reference_id RHSA-2021:0290
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0290
24
reference_url https://access.redhat.com/errata/RHSA-2021:0297
reference_id RHSA-2021:0297
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0297
25
reference_url https://access.redhat.com/errata/RHSA-2021:0298
reference_id RHSA-2021:0298
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0298
26
reference_url https://access.redhat.com/errata/RHSA-2021:0299
reference_id RHSA-2021:0299
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0299
27
reference_url https://access.redhat.com/errata/RHSA-2021:0397
reference_id RHSA-2021:0397
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0397
28
reference_url https://usn.ubuntu.com/4717-1/
reference_id USN-4717-1
reference_type
scores
url https://usn.ubuntu.com/4717-1/
29
reference_url https://usn.ubuntu.com/4736-1/
reference_id USN-4736-1
reference_type
scores
url https://usn.ubuntu.com/4736-1/
fixed_packages
0
url pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl pkg:apk/alpine/firefox-esr@78.7.0-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community
aliases CVE-2021-23954
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w7xr-wxmq-u7dw
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox-esr@78.7.0-r0%3Farch=aarch64&distroversion=v3.23&reponame=community