Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Thunderbird@11.0.0

Type mozilla

Namespace

Name Thunderbird

Version 11.0.0

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 12.0.0

Latest_non_vulnerable_version 150.0.1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1wwf-s9g1-n7em

vulnerability_id VCID-1wwf-s9g1-n7em

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0455.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0455.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0455

reference_id

reference_type

scores

value	0.01144
scoring_system	epss
scoring_elements	0.78525
published_at	2026-04-29T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78396
published_at	2026-04-01T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78402
published_at	2026-04-02T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78433
published_at	2026-04-04T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78417
published_at	2026-04-07T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78443
published_at	2026-04-08T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78448
published_at	2026-04-09T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78473
published_at	2026-04-11T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78455
published_at	2026-04-12T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78447
published_at	2026-04-13T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78475
published_at	2026-04-16T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78474
published_at	2026-04-18T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.7847
published_at	2026-04-21T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78502
published_at	2026-04-24T12:55:00Z

value	0.01144
scoring_system	epss
scoring_elements	0.78509
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0455

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803119
reference_id	803119
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803119

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0455
reference_id	CVE-2012-0455
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0455

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-13

reference_id

mfsa2012-13

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-13

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

reference_url	https://usn.ubuntu.com/1401-1/
reference_id	USN-1401-1
reference_type
scores
url	https://usn.ubuntu.com/1401-1/

reference_url	https://usn.ubuntu.com/1401-2/
reference_id	USN-1401-2
reference_type
scores
url	https://usn.ubuntu.com/1401-2/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.20
purl	pkg:mozilla/Thunderbird@3.1.20
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.20

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0455

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1wwf-s9g1-n7em

url VCID-4kn3-de7p-2fh6

vulnerability_id VCID-4kn3-de7p-2fh6

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0459.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0459.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0459

reference_id

reference_type

scores

value	0.03436
scoring_system	epss
scoring_elements	0.87517
published_at	2026-04-29T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87424
published_at	2026-04-01T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87434
published_at	2026-04-02T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87448
published_at	2026-04-04T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.8745
published_at	2026-04-07T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87469
published_at	2026-04-08T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87476
published_at	2026-04-09T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87487
published_at	2026-04-11T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87483
published_at	2026-04-12T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87479
published_at	2026-04-13T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87494
published_at	2026-04-21T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87496
published_at	2026-04-18T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87511
published_at	2026-04-24T12:55:00Z

value	0.03436
scoring_system	epss
scoring_elements	0.87518
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0459

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803112
reference_id	803112
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803112

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0459
reference_id	CVE-2012-0459
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0459

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-17

reference_id

mfsa2012-17

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-17

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

fixed_packages

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0459

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4kn3-de7p-2fh6

url VCID-8wvd-pbt5-guae

vulnerability_id VCID-8wvd-pbt5-guae

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0461.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0461.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0461

reference_id

reference_type

scores

value	0.01161
scoring_system	epss
scoring_elements	0.78676
published_at	2026-04-29T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78547
published_at	2026-04-01T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78554
published_at	2026-04-02T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78585
published_at	2026-04-04T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78567
published_at	2026-04-07T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78593
published_at	2026-04-08T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78599
published_at	2026-04-09T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78623
published_at	2026-04-11T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78605
published_at	2026-04-12T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78597
published_at	2026-04-13T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78626
published_at	2026-04-16T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78624
published_at	2026-04-18T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78621
published_at	2026-04-21T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.78652
published_at	2026-04-24T12:55:00Z

value	0.01161
scoring_system	epss
scoring_elements	0.7866
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0461

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803109
reference_id	803109
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803109

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0461
reference_id	CVE-2012-0461
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0461

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-19

reference_id

mfsa2012-19

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-19

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

reference_url	https://usn.ubuntu.com/1401-1/
reference_id	USN-1401-1
reference_type
scores
url	https://usn.ubuntu.com/1401-1/

reference_url	https://usn.ubuntu.com/1401-2/
reference_id	USN-1401-2
reference_type
scores
url	https://usn.ubuntu.com/1401-2/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.20
purl	pkg:mozilla/Thunderbird@3.1.20
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.20

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0461

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8wvd-pbt5-guae

url VCID-9vzq-7k6t-h3f9

vulnerability_id VCID-9vzq-7k6t-h3f9

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0451.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0451.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0451

reference_id

reference_type

scores

value	0.0021
scoring_system	epss
scoring_elements	0.43212
published_at	2026-04-29T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.4331
published_at	2026-04-01T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43371
published_at	2026-04-02T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43399
published_at	2026-04-04T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43337
published_at	2026-04-07T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43389
published_at	2026-04-08T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43404
published_at	2026-04-09T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43422
published_at	2026-04-11T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43391
published_at	2026-04-12T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43376
published_at	2026-04-13T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43435
published_at	2026-04-16T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43424
published_at	2026-04-18T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43358
published_at	2026-04-21T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.43288
published_at	2026-04-24T12:55:00Z

value	0.0021
scoring_system	epss
scoring_elements	0.4329
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0451

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803114
reference_id	803114
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0451
reference_id	CVE-2012-0451
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0451

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-15

reference_id

mfsa2012-15

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-15

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

fixed_packages

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0451

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9vzq-7k6t-h3f9

url VCID-mjtf-tcqm-37g1

vulnerability_id VCID-mjtf-tcqm-37g1

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0458.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0458.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0458

reference_id

reference_type

scores

value	0.02067
scoring_system	epss
scoring_elements	0.83998
published_at	2026-04-29T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83865
published_at	2026-04-01T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83878
published_at	2026-04-02T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83894
published_at	2026-04-04T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83896
published_at	2026-04-07T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83919
published_at	2026-04-08T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83926
published_at	2026-04-09T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83942
published_at	2026-04-11T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83935
published_at	2026-04-12T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83932
published_at	2026-04-13T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83956
published_at	2026-04-16T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83957
published_at	2026-04-18T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83959
published_at	2026-04-21T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83985
published_at	2026-04-24T12:55:00Z

value	0.02067
scoring_system	epss
scoring_elements	0.83993
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0458

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803113
reference_id	803113
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803113

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0458
reference_id	CVE-2012-0458
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0458

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-16

reference_id

mfsa2012-16

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-16

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

reference_url	https://usn.ubuntu.com/1401-1/
reference_id	USN-1401-1
reference_type
scores
url	https://usn.ubuntu.com/1401-1/

reference_url	https://usn.ubuntu.com/1401-2/
reference_id	USN-1401-2
reference_type
scores
url	https://usn.ubuntu.com/1401-2/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.20
purl	pkg:mozilla/Thunderbird@3.1.20
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.20

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0458

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mjtf-tcqm-37g1

url VCID-n3yh-rad3-5ffn

vulnerability_id VCID-n3yh-rad3-5ffn

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0457.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0457.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0457

reference_id

reference_type

scores

value	0.07333
scoring_system	epss
scoring_elements	0.91715
published_at	2026-04-29T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91655
published_at	2026-04-01T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91663
published_at	2026-04-02T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91668
published_at	2026-04-04T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91677
published_at	2026-04-07T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.9169
published_at	2026-04-08T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91696
published_at	2026-04-09T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.917
published_at	2026-04-11T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91702
published_at	2026-04-12T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91698
published_at	2026-04-13T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91719
published_at	2026-04-24T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91712
published_at	2026-04-18T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91713
published_at	2026-04-21T12:55:00Z

value	0.07333
scoring_system	epss
scoring_elements	0.91716
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0457

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803116
reference_id	803116
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803116

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0457
reference_id	CVE-2012-0457
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0457

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-14

reference_id

mfsa2012-14

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-14

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

reference_url	https://usn.ubuntu.com/1401-1/
reference_id	USN-1401-1
reference_type
scores
url	https://usn.ubuntu.com/1401-1/

reference_url	https://usn.ubuntu.com/1401-2/
reference_id	USN-1401-2
reference_type
scores
url	https://usn.ubuntu.com/1401-2/

fixed_packages

url	pkg:mozilla/Thunderbird@3.1.20
purl	pkg:mozilla/Thunderbird@3.1.20
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.1.20

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0457

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n3yh-rad3-5ffn

url VCID-nd4b-5sfc-n7au

vulnerability_id VCID-nd4b-5sfc-n7au

summary

Security researchers Blair Strang and Scott
Bell of Security Assessment found that when a parent window spawns and
closes a child window that uses the file open dialog, a crash can be induced in
shlwapi.dll on 32-bit Windows 7 systems. This crash may be potentially
exploitable. 
Firefox 3.6 and Thunderbird 3.1 are not affected by this
vulnerability.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0454

reference_id

reference_type

scores

value	0.02332
scoring_system	epss
scoring_elements	0.84895
published_at	2026-04-29T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84763
published_at	2026-04-01T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84778
published_at	2026-04-02T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84797
published_at	2026-04-04T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84799
published_at	2026-04-07T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84822
published_at	2026-04-08T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84828
published_at	2026-04-09T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84847
published_at	2026-04-11T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84843
published_at	2026-04-12T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84838
published_at	2026-04-13T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.8486
published_at	2026-04-16T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84861
published_at	2026-04-18T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84859
published_at	2026-04-21T12:55:00Z

value	0.02332
scoring_system	epss
scoring_elements	0.84885
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0454

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0454
reference_id	CVE-2012-0454
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0454

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-12

reference_id

mfsa2012-12

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-12

fixed_packages

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0454

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nd4b-5sfc-n7au

url VCID-ubf3-hk5t-yuhe

vulnerability_id VCID-ubf3-hk5t-yuhe

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0460.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0460.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0460

reference_id

reference_type

scores

value	0.01798
scoring_system	epss
scoring_elements	0.82856
published_at	2026-04-29T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82712
published_at	2026-04-01T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82728
published_at	2026-04-02T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82741
published_at	2026-04-04T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82738
published_at	2026-04-07T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82764
published_at	2026-04-08T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82771
published_at	2026-04-09T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82787
published_at	2026-04-11T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82782
published_at	2026-04-12T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82778
published_at	2026-04-13T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82817
published_at	2026-04-16T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82816
published_at	2026-04-18T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82819
published_at	2026-04-21T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82842
published_at	2026-04-24T12:55:00Z

value	0.01798
scoring_system	epss
scoring_elements	0.82851
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0460

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=803111
reference_id	803111
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=803111

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0460
reference_id	CVE-2012-0460
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0460

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-18

reference_id

mfsa2012-18

reference_type

scores

value	none
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2012-18

reference_url	https://access.redhat.com/errata/RHSA-2012:0387
reference_id	RHSA-2012:0387
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0387

reference_url	https://access.redhat.com/errata/RHSA-2012:0388
reference_id	RHSA-2012:0388
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0388

reference_url	https://usn.ubuntu.com/1400-1/
reference_id	USN-1400-1
reference_type
scores
url	https://usn.ubuntu.com/1400-1/

reference_url	https://usn.ubuntu.com/1400-3/
reference_id	USN-1400-3
reference_type
scores
url	https://usn.ubuntu.com/1400-3/

fixed_packages

url	pkg:mozilla/Thunderbird@11.0.0
purl	pkg:mozilla/Thunderbird@11.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

aliases CVE-2012-0460

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ubf3-hk5t-yuhe

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@11.0.0

Package Instance