{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","type":"apk","namespace":"alpine","name":"firefox","version":"85.0-r0","qualifiers":{"arch":"x86_64","distroversion":"edge","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"87.0-r0","latest_non_vulnerable_version":"119.0-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36565?format=json","vulnerability_id":"VCID-3nzs-5tgj-q3hw","summary":"Multiple vulnerabilities have been found in Mozilla Thunderbird,\n    the worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23964.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23964.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23964","reference_id":"","reference_type":"","scores":[{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59204","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59215","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59196","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59232","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59237","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59218","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59199","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59087","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59161","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59185","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59149","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.592","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59213","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59233","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920651","reference_id":"1920651","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920651"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/ASA-202102-2","reference_id":"ASA-202102-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-2"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.archlinux.org/AVG-1496","reference_id":"AVG-1496","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1496"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://security.gentoo.org/glsa/202102-02","reference_id":"GLSA-202102-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04","reference_id":"mfsa2021-04","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05","reference_id":"mfsa2021-05","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0285","reference_id":"RHSA-2021:0285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0288","reference_id":"RHSA-2021:0288","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0288"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0289","reference_id":"RHSA-2021:0289","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0289"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0290","reference_id":"RHSA-2021:0290","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0290"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0297","reference_id":"RHSA-2021:0297","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0297"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0298","reference_id":"RHSA-2021:0298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0299","reference_id":"RHSA-2021:0299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0397","reference_id":"RHSA-2021:0397","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0397"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"},{"reference_url":"https://usn.ubuntu.com/4736-1/","reference_id":"USN-4736-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4736-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23964"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3nzs-5tgj-q3hw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58553?format=json","vulnerability_id":"VCID-87at-xwyp-3bgm","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23965","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55334","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55261","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55341","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55361","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.5536","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55384","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55362","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55413","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55423","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55402","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55383","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55419","published_at":"2026-04-16T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23965"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23965"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-87at-xwyp-3bgm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/50212?format=json","vulnerability_id":"VCID-8fu2-5gxg-ekhy","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23961.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23961.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23961","reference_id":"","reference_type":"","scores":[{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70419","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70338","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70325","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70369","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70378","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70359","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70411","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70264","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70276","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70294","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.7027","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70315","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.7033","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00632","scoring_system":"epss","scoring_elements":"0.70353","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23961"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23961"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23993"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23994"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23995"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23998"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23999"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24002"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29948"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29949"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1951367","reference_id":"1951367","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1951367"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/ASA-202104-4","reference_id":"ASA-202104-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202104-4"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.archlinux.org/AVG-1836","reference_id":"AVG-1836","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1836"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://security.gentoo.org/glsa/202104-09","reference_id":"GLSA-202104-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202104-09"},{"reference_url":"https://security.gentoo.org/glsa/202104-10","reference_id":"GLSA-202104-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202104-10"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-14","reference_id":"mfsa2021-14","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-14"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-15","reference_id":"mfsa2021-15","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1350","reference_id":"RHSA-2021:1350","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1351","reference_id":"RHSA-2021:1351","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1352","reference_id":"RHSA-2021:1352","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1353","reference_id":"RHSA-2021:1353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1360","reference_id":"RHSA-2021:1360","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1361","reference_id":"RHSA-2021:1361","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1361"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1362","reference_id":"RHSA-2021:1362","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1362"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1363","reference_id":"RHSA-2021:1363","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1363"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"},{"reference_url":"https://usn.ubuntu.com/4995-1/","reference_id":"USN-4995-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4995-1/"},{"reference_url":"https://usn.ubuntu.com/4995-2/","reference_id":"USN-4995-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4995-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23961"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8fu2-5gxg-ekhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58551?format=json","vulnerability_id":"VCID-aaju-2u3m-77dh","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23962","reference_id":"","reference_type":"","scores":[{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56694","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56638","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56693","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56711","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56733","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56754","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56731","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56783","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56788","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56795","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56773","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56752","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.56782","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0034","scoring_system":"epss","scoring_elements":"0.5678","published_at":"2026-04-18T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23962"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23962"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aaju-2u3m-77dh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63239?format=json","vulnerability_id":"VCID-dher-5g6m-yuev","summary":"Navigations through the Android-specific `intent` URL scheme could have been misused to escape iframe sandbox.*Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23957","reference_id":"","reference_type":"","scores":[{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51753","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51707","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.5179","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51796","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51756","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51782","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51742","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51797","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51794","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51845","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51824","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51809","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51852","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.51859","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.5184","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23957"},{"reference_url":"https://security.archlinux.org/AVG-1493","reference_id":"AVG-1493","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1493"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23957"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dher-5g6m-yuev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58548?format=json","vulnerability_id":"VCID-hkbw-grqv-2qg5","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23956","reference_id":"","reference_type":"","scores":[{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39032","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39262","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39131","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39113","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39428","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39452","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39366","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39421","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39436","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39448","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39409","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39391","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39443","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39414","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00178","scoring_system":"epss","scoring_elements":"0.39327","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23956"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23956"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hkbw-grqv-2qg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/63240?format=json","vulnerability_id":"VCID-jf6r-vdhm-tyfr","summary":"An XSS bug in internal error pages could have led to various spoofing attacks, including other error pages and the address bar.*Note: This issue only affected Firefox for Android. Other operating systems are unaffected.*","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23959","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53355","published_at":"2026-04-29T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.533","published_at":"2026-04-01T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.5338","published_at":"2026-04-24T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53392","published_at":"2026-04-26T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53322","published_at":"2026-04-02T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53349","published_at":"2026-04-04T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53319","published_at":"2026-04-07T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53371","published_at":"2026-04-08T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53366","published_at":"2026-04-09T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53417","published_at":"2026-04-11T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53401","published_at":"2026-04-12T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53385","published_at":"2026-04-13T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53422","published_at":"2026-04-16T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53428","published_at":"2026-04-18T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53408","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23959"},{"reference_url":"https://security.archlinux.org/AVG-1493","reference_id":"AVG-1493","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1493"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23959"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jf6r-vdhm-tyfr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58545?format=json","vulnerability_id":"VCID-mvag-kraa-6ydu","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23955","reference_id":"","reference_type":"","scores":[{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33386","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.3364","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33492","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33471","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33984","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.34015","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.3387","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33912","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33943","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33942","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.339","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33876","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33914","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33899","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00138","scoring_system":"epss","scoring_elements":"0.33867","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23955"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23955"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mvag-kraa-6ydu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58549?format=json","vulnerability_id":"VCID-ssdk-7x9y-wke2","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23958","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55359","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55285","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55444","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55366","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55383","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55408","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55386","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55437","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55448","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55426","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23958"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23958"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ssdk-7x9y-wke2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36562?format=json","vulnerability_id":"VCID-uhde-5x3s-u7fk","summary":"Multiple vulnerabilities have been found in Mozilla Thunderbird,\n    the worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23954.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23954.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23954","reference_id":"","reference_type":"","scores":[{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48435","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48476","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48489","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48539","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48534","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48492","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48477","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.4842","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48456","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48478","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48431","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48485","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.4848","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48503","published_at":"2026-04-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920648","reference_id":"1920648","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920648"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/ASA-202102-2","reference_id":"ASA-202102-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-2"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.archlinux.org/AVG-1496","reference_id":"AVG-1496","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1496"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://security.gentoo.org/glsa/202102-02","reference_id":"GLSA-202102-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04","reference_id":"mfsa2021-04","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05","reference_id":"mfsa2021-05","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0285","reference_id":"RHSA-2021:0285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0288","reference_id":"RHSA-2021:0288","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0288"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0289","reference_id":"RHSA-2021:0289","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0289"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0290","reference_id":"RHSA-2021:0290","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0290"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0297","reference_id":"RHSA-2021:0297","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0297"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0298","reference_id":"RHSA-2021:0298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0299","reference_id":"RHSA-2021:0299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0397","reference_id":"RHSA-2021:0397","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0397"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"},{"reference_url":"https://usn.ubuntu.com/4736-1/","reference_id":"USN-4736-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4736-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23954"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uhde-5x3s-u7fk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58552?format=json","vulnerability_id":"VCID-wsr5-q3ht-pfh2","summary":"Multiple vulnerabilities have been found in Mozilla Firefox, the\n    worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23963","reference_id":"","reference_type":"","scores":[{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35222","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35466","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35322","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35302","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35665","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35691","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35571","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35617","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.3564","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35649","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35605","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35583","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35622","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35611","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0015","scoring_system":"epss","scoring_elements":"0.35561","published_at":"2026-04-21T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23963"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23963"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wsr5-q3ht-pfh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36564?format=json","vulnerability_id":"VCID-y7u2-9qe6-17g4","summary":"Multiple vulnerabilities have been found in Mozilla Thunderbird,\n    the worst of which could result in the arbitrary execution of code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23960.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23960.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23960","reference_id":"","reference_type":"","scores":[{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53654","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53692","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.5373","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53734","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53715","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53678","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53689","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53608","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53632","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.5366","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53628","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53679","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53677","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53726","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00304","scoring_system":"epss","scoring_elements":"0.53709","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-23960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15685"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16044"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23953"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23964"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920650","reference_id":"1920650","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1920650"},{"reference_url":"https://security.archlinux.org/ASA-202102-1","reference_id":"ASA-202102-1","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-1"},{"reference_url":"https://security.archlinux.org/ASA-202102-2","reference_id":"ASA-202102-2","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202102-2"},{"reference_url":"https://security.archlinux.org/AVG-1492","reference_id":"AVG-1492","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1492"},{"reference_url":"https://security.archlinux.org/AVG-1496","reference_id":"AVG-1496","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1496"},{"reference_url":"https://security.gentoo.org/glsa/202102-01","reference_id":"GLSA-202102-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-01"},{"reference_url":"https://security.gentoo.org/glsa/202102-02","reference_id":"GLSA-202102-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202102-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03","reference_id":"mfsa2021-03","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-03"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04","reference_id":"mfsa2021-04","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-04"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05","reference_id":"mfsa2021-05","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-05"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0285","reference_id":"RHSA-2021:0285","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0285"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0288","reference_id":"RHSA-2021:0288","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0288"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0289","reference_id":"RHSA-2021:0289","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0289"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0290","reference_id":"RHSA-2021:0290","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0290"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0297","reference_id":"RHSA-2021:0297","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0297"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0298","reference_id":"RHSA-2021:0298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0299","reference_id":"RHSA-2021:0299","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0299"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0397","reference_id":"RHSA-2021:0397","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0397"},{"reference_url":"https://usn.ubuntu.com/4717-1/","reference_id":"USN-4717-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4717-1/"},{"reference_url":"https://usn.ubuntu.com/4736-1/","reference_id":"USN-4736-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4736-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/486710?format=json","purl":"pkg:apk/alpine/firefox@85.0-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}],"aliases":["CVE-2021-23960"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7u2-9qe6-17g4"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/firefox@85.0-r0%3Farch=x86_64&distroversion=edge&reponame=community"}