{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","type":"ebuild","namespace":"net-libs","name":"xulrunner","version":"1.1.2","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.1.4","latest_non_vulnerable_version":"10.0.11","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185124?format=json","vulnerability_id":"VCID-378e-gsej-z3hn","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2867.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2867.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2867","reference_id":"","reference_type":"","scores":[{"value":"0.18499","scoring_system":"epss","scoring_elements":"0.95395","published_at":"2026-06-11T12:55:00Z"},{"value":"0.18499","scoring_system":"epss","scoring_elements":"0.95409","published_at":"2026-06-12T12:55:00Z"},{"value":"0.18499","scoring_system":"epss","scoring_elements":"0.95413","published_at":"2026-06-13T12:55:00Z"},{"value":"0.18499","scoring_system":"epss","scoring_elements":"0.95415","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2867"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840","reference_id":"241840","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2867","reference_id":"CVE-2007-2867","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2867"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-12","reference_id":"mfsa2007-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"},{"reference_url":"https://usn.ubuntu.com/469-1/","reference_id":"USN-469-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/469-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-2867"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-378e-gsej-z3hn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185127?format=json","vulnerability_id":"VCID-br66-eb5b-t3e7","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2870.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2870.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2870","reference_id":"","reference_type":"","scores":[{"value":"0.08295","scoring_system":"epss","scoring_elements":"0.92439","published_at":"2026-06-11T12:55:00Z"},{"value":"0.08295","scoring_system":"epss","scoring_elements":"0.92465","published_at":"2026-06-12T12:55:00Z"},{"value":"0.08295","scoring_system":"epss","scoring_elements":"0.92468","published_at":"2026-06-13T12:55:00Z"},{"value":"0.08295","scoring_system":"epss","scoring_elements":"0.92467","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2870"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618370","reference_id":"1618370","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618370"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2870","reference_id":"CVE-2007-2870","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2870"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-16","reference_id":"mfsa2007-16","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-2870"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-br66-eb5b-t3e7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185128?format=json","vulnerability_id":"VCID-byvh-adbw-v3f5","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2871.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2871.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2871","reference_id":"","reference_type":"","scores":[{"value":"0.16946","scoring_system":"epss","scoring_elements":"0.95118","published_at":"2026-06-11T12:55:00Z"},{"value":"0.16946","scoring_system":"epss","scoring_elements":"0.95134","published_at":"2026-06-12T12:55:00Z"},{"value":"0.16946","scoring_system":"epss","scoring_elements":"0.95135","published_at":"2026-06-13T12:55:00Z"},{"value":"0.16946","scoring_system":"epss","scoring_elements":"0.95136","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2871"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840","reference_id":"241840","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2871","reference_id":"CVE-2007-2871","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2871"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-17","reference_id":"mfsa2007-17","reference_type":"","scores":[{"value":"low","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-17"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-2871"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-byvh-adbw-v3f5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185123?format=json","vulnerability_id":"VCID-nnad-adwn-eqaw","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1558.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1558.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1558","reference_id":"","reference_type":"","scores":[{"value":"0.1342","scoring_system":"epss","scoring_elements":"0.94356","published_at":"2026-06-11T12:55:00Z"},{"value":"0.1342","scoring_system":"epss","scoring_elements":"0.94375","published_at":"2026-06-12T12:55:00Z"},{"value":"0.1342","scoring_system":"epss","scoring_elements":"0.94379","published_at":"2026-06-13T12:55:00Z"},{"value":"0.1342","scoring_system":"epss","scoring_elements":"0.94381","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1558"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=241191","reference_id":"241191","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=241191"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-15","reference_id":"mfsa2007-15","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0344","reference_id":"RHSA-2007:0344","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0353","reference_id":"RHSA-2007:0353","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0353"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0385","reference_id":"RHSA-2007:0385","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0385"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0386","reference_id":"RHSA-2007:0386","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0386"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1140","reference_id":"RHSA-2009:1140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1140"},{"reference_url":"https://usn.ubuntu.com/469-1/","reference_id":"USN-469-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/469-1/"},{"reference_url":"https://usn.ubuntu.com/520-1/","reference_id":"USN-520-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/520-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-1558"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nnad-adwn-eqaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185122?format=json","vulnerability_id":"VCID-p8wu-vkb7-kqdr","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1362.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1362.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1362","reference_id":"","reference_type":"","scores":[{"value":"0.46498","scoring_system":"epss","scoring_elements":"0.97733","published_at":"2026-06-11T12:55:00Z"},{"value":"0.46498","scoring_system":"epss","scoring_elements":"0.97742","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1362"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840","reference_id":"241840","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1362","reference_id":"CVE-2007-1362","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1362"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29720.txt","reference_id":"CVE-2007-1362;OSVDB-35139","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29720.txt"},{"reference_url":"https://www.securityfocus.com/bid/22879/info","reference_id":"CVE-2007-1362;OSVDB-35139","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/22879/info"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-14","reference_id":"mfsa2007-14","reference_type":"","scores":[{"value":"low","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-14"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-1362"],"risk_score":5.4,"exploitability":"2.0","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p8wu-vkb7-kqdr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185125?format=json","vulnerability_id":"VCID-tk9h-8q57-yyeu","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2868.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2868.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2868","reference_id":"","reference_type":"","scores":[{"value":"0.27663","scoring_system":"epss","scoring_elements":"0.9655","published_at":"2026-06-11T12:55:00Z"},{"value":"0.27663","scoring_system":"epss","scoring_elements":"0.9656","published_at":"2026-06-12T12:55:00Z"},{"value":"0.27663","scoring_system":"epss","scoring_elements":"0.96561","published_at":"2026-06-13T12:55:00Z"},{"value":"0.27663","scoring_system":"epss","scoring_elements":"0.96564","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2868"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618369","reference_id":"1618369","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618369"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2868","reference_id":"CVE-2007-2868","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2868"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-12","reference_id":"mfsa2007-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"},{"reference_url":"https://usn.ubuntu.com/469-1/","reference_id":"USN-469-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/469-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-2868"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tk9h-8q57-yyeu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/185126?format=json","vulnerability_id":"VCID-ugx9-ud75-cye9","summary":"Multiple vulnerabilities have been reported in Mozilla Firefox,\n    Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted\n    arbitrary remote code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2869.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2869.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2869","reference_id":"","reference_type":"","scores":[{"value":"0.16441","scoring_system":"epss","scoring_elements":"0.95035","published_at":"2026-06-11T12:55:00Z"},{"value":"0.16441","scoring_system":"epss","scoring_elements":"0.95051","published_at":"2026-06-12T12:55:00Z"},{"value":"0.16441","scoring_system":"epss","scoring_elements":"0.95052","published_at":"2026-06-13T12:55:00Z"},{"value":"0.16441","scoring_system":"epss","scoring_elements":"0.95054","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2869"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840","reference_id":"241840","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=241840"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2869","reference_id":"CVE-2007-2869","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2869"},{"reference_url":"https://security.gentoo.org/glsa/200706-06","reference_id":"GLSA-200706-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200706-06"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-13","reference_id":"mfsa2007-13","reference_type":"","scores":[{"value":"low","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2007-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0400","reference_id":"RHSA-2007:0400","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0400"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0401","reference_id":"RHSA-2007:0401","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0401"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0402","reference_id":"RHSA-2007:0402","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0402"},{"reference_url":"https://usn.ubuntu.com/468-1/","reference_id":"USN-468-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/468-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/8076?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.1.2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/8077?format=json","purl":"pkg:ebuild/net-libs/xulrunner@1.8.1.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.8.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/8078?format=json","purl":"pkg:ebuild/net-libs/xulrunner@2.0.0.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@2.0.0.4"}],"aliases":["CVE-2007-2869"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ugx9-ud75-cye9"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/net-libs/xulrunner@1.1.2"}