Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:mozilla/Thunderbird@3.0.1

Type mozilla

Namespace

Name Thunderbird

Version 3.0.1

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.0.2

Latest_non_vulnerable_version 150.0.1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-751x-t7vc-3yen

vulnerability_id VCID-751x-t7vc-3yen

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3389.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3389.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3389

reference_id

reference_type

scores

value	0.0553
scoring_system	epss
scoring_elements	0.90292
published_at	2026-05-05T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90212
published_at	2026-04-01T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90215
published_at	2026-04-02T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90228
published_at	2026-04-04T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90232
published_at	2026-04-07T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90248
published_at	2026-04-08T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90255
published_at	2026-04-09T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90263
published_at	2026-04-11T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90262
published_at	2026-04-12T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90257
published_at	2026-04-13T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90273
published_at	2026-04-18T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.9027
published_at	2026-04-21T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90284
published_at	2026-04-24T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.90283
published_at	2026-04-26T12:55:00Z

value	0.0553
scoring_system	epss
scoring_elements	0.9028
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3389

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=548541
reference_id	548541
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=548541

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=572950
reference_id	572950
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=572950

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3389
reference_id	CVE-2009-3389
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3389

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url	https://security.gentoo.org/glsa/201312-04
reference_id	GLSA-201312-04
reference_type
scores
url	https://security.gentoo.org/glsa/201312-04

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-67

reference_id

mfsa2009-67

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-67

reference_url	https://usn.ubuntu.com/874-1/
reference_id	USN-874-1
reference_type
scores
url	https://usn.ubuntu.com/874-1/

fixed_packages

url	pkg:mozilla/Thunderbird@3.0.1
purl	pkg:mozilla/Thunderbird@3.0.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.1

aliases CVE-2009-3389

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-751x-t7vc-3yen

url VCID-9hn8-9yut-pfec

vulnerability_id VCID-9hn8-9yut-pfec

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3388.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3388.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3388

reference_id

reference_type

scores

value	0.02632
scoring_system	epss
scoring_elements	0.85764
published_at	2026-05-05T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85615
published_at	2026-04-01T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85628
published_at	2026-04-02T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85645
published_at	2026-04-04T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85652
published_at	2026-04-07T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85671
published_at	2026-04-08T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85683
published_at	2026-04-09T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85697
published_at	2026-04-11T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85694
published_at	2026-04-12T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.8569
published_at	2026-04-13T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85712
published_at	2026-04-16T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85717
published_at	2026-04-18T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85711
published_at	2026-04-21T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85734
published_at	2026-04-24T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85745
published_at	2026-04-26T12:55:00Z

value	0.02632
scoring_system	epss
scoring_elements	0.85747
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3388

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=548539
reference_id	548539
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=548539

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575743
reference_id	575743
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3388
reference_id	CVE-2009-3388
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3388

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-66

reference_id

mfsa2009-66

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-66

reference_url	https://usn.ubuntu.com/874-1/
reference_id	USN-874-1
reference_type
scores
url	https://usn.ubuntu.com/874-1/

fixed_packages

url	pkg:mozilla/Thunderbird@3.0.1
purl	pkg:mozilla/Thunderbird@3.0.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.1

aliases CVE-2009-3388

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9hn8-9yut-pfec

url VCID-9jkh-xn2d-3bdx

vulnerability_id VCID-9jkh-xn2d-3bdx

summary

Multiple vulnerabilities have been found in Mozilla Firefox,
    Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may
    allow execution of arbitrary code or local privilege escalation.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3979.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3979.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3979

reference_id

reference_type

scores

value	0.05076
scoring_system	epss
scoring_elements	0.89836
published_at	2026-05-05T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89757
published_at	2026-04-01T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.8976
published_at	2026-04-02T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89775
published_at	2026-04-04T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89778
published_at	2026-04-07T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89796
published_at	2026-04-08T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89802
published_at	2026-04-09T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89808
published_at	2026-04-21T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89806
published_at	2026-04-12T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89799
published_at	2026-04-13T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89813
published_at	2026-04-16T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89814
published_at	2026-04-18T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89823
published_at	2026-04-26T12:55:00Z

value	0.05076
scoring_system	epss
scoring_elements	0.89822
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3979

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=546694
reference_id	546694
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=546694

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979
reference_id	CVE-2009-3979
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-65

reference_id

mfsa2009-65

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2009-65

reference_url	https://access.redhat.com/errata/RHSA-2009:1673
reference_id	RHSA-2009:1673
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1673

reference_url	https://access.redhat.com/errata/RHSA-2009:1674
reference_id	RHSA-2009:1674
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1674

reference_url	https://access.redhat.com/errata/RHSA-2010:0153
reference_id	RHSA-2010:0153
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0153

reference_url	https://access.redhat.com/errata/RHSA-2010:0154
reference_id	RHSA-2010:0154
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0154

reference_url	https://usn.ubuntu.com/873-1/
reference_id	USN-873-1
reference_type
scores
url	https://usn.ubuntu.com/873-1/

reference_url	https://usn.ubuntu.com/874-1/
reference_id	USN-874-1
reference_type
scores
url	https://usn.ubuntu.com/874-1/

fixed_packages

url	pkg:mozilla/Thunderbird@3.0.1
purl	pkg:mozilla/Thunderbird@3.0.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.1

aliases CVE-2009-3979

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9jkh-xn2d-3bdx

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@3.0.1

Package Instance