{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","type":"alpm","namespace":"archlinux","name":"firefox","version":"50.1.0-1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"52.0-1","latest_non_vulnerable_version":"101.0-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3535?format=json","vulnerability_id":"VCID-56sd-8xv6-rfh1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5390.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5390.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5390","reference_id":"","reference_type":"","scores":[{"value":"0.01911","scoring_system":"epss","scoring_elements":"0.83745","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01911","scoring_system":"epss","scoring_elements":"0.83687","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416279","reference_id":"1416279","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416279"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5390"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-56sd-8xv6-rfh1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196998?format=json","vulnerability_id":"VCID-67sg-az4a-pue7","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5379","reference_id":"","reference_type":"","scores":[{"value":"0.01753","scoring_system":"epss","scoring_elements":"0.82985","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01753","scoring_system":"epss","scoring_elements":"0.83046","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5379"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5379"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-67sg-az4a-pue7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3530?format=json","vulnerability_id":"VCID-88v6-axth-87e7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5376.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5376.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5376","reference_id":"","reference_type":"","scores":[{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83348","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83287","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416272","reference_id":"1416272","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416272"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5376"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-88v6-axth-87e7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3532?format=json","vulnerability_id":"VCID-8rzb-zvae-5uh1","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5380.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5380.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5380","reference_id":"","reference_type":"","scores":[{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83348","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83287","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416274","reference_id":"1416274","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416274"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5380"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8rzb-zvae-5uh1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3529?format=json","vulnerability_id":"VCID-c2ha-x24x-zye9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5375.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5375.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5375","reference_id":"","reference_type":"","scores":[{"value":"0.58393","scoring_system":"epss","scoring_elements":"0.98245","published_at":"2026-06-12T12:55:00Z"},{"value":"0.58393","scoring_system":"epss","scoring_elements":"0.98237","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416271","reference_id":"1416271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416271"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5375"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2ha-x24x-zye9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196992?format=json","vulnerability_id":"VCID-cyke-6j3r-v7b9","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5388","reference_id":"","reference_type":"","scores":[{"value":"0.0128","scoring_system":"epss","scoring_elements":"0.79994","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0128","scoring_system":"epss","scoring_elements":"0.80057","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5388"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5388"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cyke-6j3r-v7b9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196996?format=json","vulnerability_id":"VCID-fw7b-ynyy-h3hf","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5382","reference_id":"","reference_type":"","scores":[{"value":"0.00957","scoring_system":"epss","scoring_elements":"0.76882","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00957","scoring_system":"epss","scoring_elements":"0.76952","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5382"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5382"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fw7b-ynyy-h3hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3534?format=json","vulnerability_id":"VCID-g8hj-bk84-x7fy","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5386.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5386.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5386","reference_id":"","reference_type":"","scores":[{"value":"0.01179","scoring_system":"epss","scoring_elements":"0.79154","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01179","scoring_system":"epss","scoring_elements":"0.79218","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416282","reference_id":"1416282","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416282"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5386"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g8hj-bk84-x7fy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196997?format=json","vulnerability_id":"VCID-hwrp-yjtx-23d4","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5381","reference_id":"","reference_type":"","scores":[{"value":"0.01264","scoring_system":"epss","scoring_elements":"0.79852","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01264","scoring_system":"epss","scoring_elements":"0.79916","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5381"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5381"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hwrp-yjtx-23d4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196989?format=json","vulnerability_id":"VCID-m2tg-m821-7ka7","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5393","reference_id":"","reference_type":"","scores":[{"value":"0.00466","scoring_system":"epss","scoring_elements":"0.6486","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00466","scoring_system":"epss","scoring_elements":"0.6496","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5393"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5393"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m2tg-m821-7ka7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196993?format=json","vulnerability_id":"VCID-m7bj-3gpe-ryhb","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5387","reference_id":"","reference_type":"","scores":[{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.31469","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00126","scoring_system":"epss","scoring_elements":"0.3166","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5387"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5387"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m7bj-3gpe-ryhb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196994?format=json","vulnerability_id":"VCID-rpns-xxft-9ff2","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5385","reference_id":"","reference_type":"","scores":[{"value":"0.00947","scoring_system":"epss","scoring_elements":"0.7676","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00947","scoring_system":"epss","scoring_elements":"0.7683","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5385"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5385"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rpns-xxft-9ff2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196999?format=json","vulnerability_id":"VCID-rx9t-9db6-cbgv","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5377","reference_id":"","reference_type":"","scores":[{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83398","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83459","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5377"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5377"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rx9t-9db6-cbgv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196990?format=json","vulnerability_id":"VCID-t7gs-maju-c3fe","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5391","reference_id":"","reference_type":"","scores":[{"value":"0.02446","scoring_system":"epss","scoring_elements":"0.85518","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02446","scoring_system":"epss","scoring_elements":"0.85569","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5391"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5391"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t7gs-maju-c3fe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3528?format=json","vulnerability_id":"VCID-tpyh-8rg9-hke5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5373.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5373.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5373","reference_id":"","reference_type":"","scores":[{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83348","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01823","scoring_system":"epss","scoring_elements":"0.83287","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1415924","reference_id":"1415924","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1415924"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5373"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tpyh-8rg9-hke5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196995?format=json","vulnerability_id":"VCID-unmt-jsyx-f3bg","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5384","reference_id":"","reference_type":"","scores":[{"value":"0.00764","scoring_system":"epss","scoring_elements":"0.73874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00764","scoring_system":"epss","scoring_elements":"0.73948","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5384"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5384"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-unmt-jsyx-f3bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3531?format=json","vulnerability_id":"VCID-vfvk-2ts3-53gp","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5378.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5378.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5378","reference_id":"","reference_type":"","scores":[{"value":"0.01592","scoring_system":"epss","scoring_elements":"0.82138","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01592","scoring_system":"epss","scoring_elements":"0.82077","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416273","reference_id":"1416273","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416273"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5378"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vfvk-2ts3-53gp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3533?format=json","vulnerability_id":"VCID-x8d6-qvh2-u7da","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5383.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5383.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5383","reference_id":"","reference_type":"","scores":[{"value":"0.01986","scoring_system":"epss","scoring_elements":"0.84026","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01986","scoring_system":"epss","scoring_elements":"0.83969","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:N/I:P/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416281","reference_id":"1416281","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416281"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5383"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x8d6-qvh2-u7da"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/197000?format=json","vulnerability_id":"VCID-x8ur-qphq-sua1","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5374","reference_id":"","reference_type":"","scores":[{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83398","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83459","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5374"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5374"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x8ur-qphq-sua1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/3536?format=json","vulnerability_id":"VCID-xkz5-x8ta-kkb9","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5396.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5396.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5396","reference_id":"","reference_type":"","scores":[{"value":"0.02193","scoring_system":"epss","scoring_elements":"0.8481","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02193","scoring_system":"epss","scoring_elements":"0.84758","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5373"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5375"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5376"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5378"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5398"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5401"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5402"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5404"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5405"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5407"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5410"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416280","reference_id":"1416280","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1416280"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/ASA-201701-40","reference_id":"ASA-201701-40","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-40"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://security.archlinux.org/AVG-158","reference_id":"AVG-158","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-158"},{"reference_url":"https://security.gentoo.org/glsa/201702-13","reference_id":"GLSA-201702-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-13"},{"reference_url":"https://security.gentoo.org/glsa/201702-22","reference_id":"GLSA-201702-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201702-22"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02","reference_id":"mfsa2017-02","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-02"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03","reference_id":"mfsa2017-03","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-03"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0190","reference_id":"RHSA-2017:0190","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0190"},{"reference_url":"https://access.redhat.com/errata/RHSA-2017:0238","reference_id":"RHSA-2017:0238","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2017:0238"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5396"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xkz5-x8ta-kkb9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/196991?format=json","vulnerability_id":"VCID-z5s7-q73z-4bdr","summary":"multiple issues","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5389","reference_id":"","reference_type":"","scores":[{"value":"0.00374","scoring_system":"epss","scoring_elements":"0.59493","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00374","scoring_system":"epss","scoring_elements":"0.59603","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-5389"},{"reference_url":"https://security.archlinux.org/ASA-201701-39","reference_id":"ASA-201701-39","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201701-39"},{"reference_url":"https://security.archlinux.org/AVG-157","reference_id":"AVG-157","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-157"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01","reference_id":"mfsa2017-01","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2017-01"},{"reference_url":"https://usn.ubuntu.com/3175-1/","reference_id":"USN-3175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9168?format=json","purl":"pkg:alpm/archlinux/firefox@51.0.1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1q8m-s6nk-8qa8"},{"vulnerability":"VCID-31be-wdy1-euc3"},{"vulnerability":"VCID-3hqm-76r6-gyc9"},{"vulnerability":"VCID-69m7-knm8-vud5"},{"vulnerability":"VCID-89uu-ebbr-rkc9"},{"vulnerability":"VCID-8qyx-u2x8-fueg"},{"vulnerability":"VCID-ap1f-236v-9bdd"},{"vulnerability":"VCID-b4v1-g6wr-2bbx"},{"vulnerability":"VCID-bppg-wbvs-9udc"},{"vulnerability":"VCID-c9hg-24v9-cfd1"},{"vulnerability":"VCID-e76p-ykmn-sff6"},{"vulnerability":"VCID-etam-bt4e-wkf2"},{"vulnerability":"VCID-f4pn-qnvv-nbc3"},{"vulnerability":"VCID-fjg1-j4dg-xuh5"},{"vulnerability":"VCID-h2m3-xdkq-nya6"},{"vulnerability":"VCID-h87n-rakn-hkha"},{"vulnerability":"VCID-m7er-r9gh-uqb6"},{"vulnerability":"VCID-n8xp-5xwh-27f8"},{"vulnerability":"VCID-nuhf-ts6g-23fn"},{"vulnerability":"VCID-rpc4-8v36-73f9"},{"vulnerability":"VCID-sajd-wmgp-x3a1"},{"vulnerability":"VCID-udmp-s2bg-j3bh"},{"vulnerability":"VCID-v8hz-21h3-akh9"},{"vulnerability":"VCID-z6j4-58gv-ykcn"},{"vulnerability":"VCID-zykw-xt67-ukaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@51.0.1-1"}],"aliases":["CVE-2017-5389"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z5s7-q73z-4bdr"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2219?format=json","vulnerability_id":"VCID-3sq6-xkwc-wucs","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9902.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9902.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9902","reference_id":"","reference_type":"","scores":[{"value":"0.00411","scoring_system":"epss","scoring_elements":"0.6182","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00411","scoring_system":"epss","scoring_elements":"0.6192","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404359","reference_id":"1404359","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404359"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9902"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3sq6-xkwc-wucs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2211?format=json","vulnerability_id":"VCID-7jjh-whu4-ryaj","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9894","reference_id":"","reference_type":"","scores":[{"value":"0.01889","scoring_system":"epss","scoring_elements":"0.83588","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01889","scoring_system":"epss","scoring_elements":"0.83647","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9894"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9894"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7jjh-whu4-ryaj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2215?format=json","vulnerability_id":"VCID-bt5t-bfcf-27bu","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9898.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9898.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9898","reference_id":"","reference_type":"","scores":[{"value":"0.02604","scoring_system":"epss","scoring_elements":"0.86001","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02604","scoring_system":"epss","scoring_elements":"0.85952","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404089","reference_id":"1404089","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404089"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9898"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bt5t-bfcf-27bu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2212?format=json","vulnerability_id":"VCID-h8zw-cevc-vqf7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9895.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9895.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9895","reference_id":"","reference_type":"","scores":[{"value":"0.00709","scoring_system":"epss","scoring_elements":"0.72756","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00709","scoring_system":"epss","scoring_elements":"0.72679","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404086","reference_id":"1404086","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404086"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9895"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h8zw-cevc-vqf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2221?format=json","vulnerability_id":"VCID-j2ga-e518-8uac","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9904.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9904.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9904","reference_id":"","reference_type":"","scores":[{"value":"0.01192","scoring_system":"epss","scoring_elements":"0.79321","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01192","scoring_system":"epss","scoring_elements":"0.79256","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404091","reference_id":"1404091","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404091"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9904"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j2ga-e518-8uac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2210?format=json","vulnerability_id":"VCID-nrqe-cqaa-8bba","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9893.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9893.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9893","reference_id":"","reference_type":"","scores":[{"value":"0.02683","scoring_system":"epss","scoring_elements":"0.86227","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02683","scoring_system":"epss","scoring_elements":"0.86176","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404096","reference_id":"1404096","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404096"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9893"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nrqe-cqaa-8bba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2213?format=json","vulnerability_id":"VCID-rbzd-h3y1-wfgp","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9896","reference_id":"","reference_type":"","scores":[{"value":"0.01539","scoring_system":"epss","scoring_elements":"0.81765","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01539","scoring_system":"epss","scoring_elements":"0.81826","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9896"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9896"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rbzd-h3y1-wfgp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2216?format=json","vulnerability_id":"VCID-rmmt-1kra-m7d3","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9899.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9899.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9899","reference_id":"","reference_type":"","scores":[{"value":"0.36421","scoring_system":"epss","scoring_elements":"0.97232","published_at":"2026-06-12T12:55:00Z"},{"value":"0.36421","scoring_system":"epss","scoring_elements":"0.97225","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404083","reference_id":"1404083","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404083"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/41042.html","reference_id":"CVE-2016-9899","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/41042.html"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9899"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rmmt-1kra-m7d3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2214?format=json","vulnerability_id":"VCID-rnxe-kmf7-t3am","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9897.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9897.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9897","reference_id":"","reference_type":"","scores":[{"value":"0.0395","scoring_system":"epss","scoring_elements":"0.88658","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0395","scoring_system":"epss","scoring_elements":"0.88619","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404087","reference_id":"1404087","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404087"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9897"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rnxe-kmf7-t3am"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2043?format=json","vulnerability_id":"VCID-sbd7-awjb-jqap","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9080","reference_id":"","reference_type":"","scores":[{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83398","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01847","scoring_system":"epss","scoring_elements":"0.83459","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9080"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9080"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sbd7-awjb-jqap"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2217?format=json","vulnerability_id":"VCID-u8su-48ab-mkft","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9900.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9900.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9900","reference_id":"","reference_type":"","scores":[{"value":"0.01417","scoring_system":"epss","scoring_elements":"0.81055","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01417","scoring_system":"epss","scoring_elements":"0.80995","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404090","reference_id":"1404090","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404090"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96","reference_id":"mfsa2016-96","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-96"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"},{"reference_url":"https://usn.ubuntu.com/3165-1/","reference_id":"USN-3165-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3165-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9900"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u8su-48ab-mkft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2220?format=json","vulnerability_id":"VCID-wcq9-awh7-2qa6","summary":"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9903","reference_id":"","reference_type":"","scores":[{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72685","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0071","scoring_system":"epss","scoring_elements":"0.72761","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9903"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"0","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:M/C:N/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9903"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wcq9-awh7-2qa6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2218?format=json","vulnerability_id":"VCID-wcqe-uexx-6qa2","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9901.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9901.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9901","reference_id":"","reference_type":"","scores":[{"value":"0.0203","scoring_system":"epss","scoring_elements":"0.84169","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0203","scoring_system":"epss","scoring_elements":"0.84224","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:N/C:P/I:P/A:P"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404358","reference_id":"1404358","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1404358"},{"reference_url":"https://security.archlinux.org/ASA-201612-15","reference_id":"ASA-201612-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201612-15"},{"reference_url":"https://security.archlinux.org/AVG-106","reference_id":"AVG-106","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-106"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94","reference_id":"mfsa2016-94","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-94"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95","reference_id":"mfsa2016-95","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-95"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2946","reference_id":"RHSA-2016:2946","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2946"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:2973","reference_id":"RHSA-2016:2973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:2973"},{"reference_url":"https://usn.ubuntu.com/3155-1/","reference_id":"USN-3155-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3155-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9182?format=json","purl":"pkg:alpm/archlinux/firefox@50.1.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56sd-8xv6-rfh1"},{"vulnerability":"VCID-67sg-az4a-pue7"},{"vulnerability":"VCID-88v6-axth-87e7"},{"vulnerability":"VCID-8rzb-zvae-5uh1"},{"vulnerability":"VCID-c2ha-x24x-zye9"},{"vulnerability":"VCID-cyke-6j3r-v7b9"},{"vulnerability":"VCID-fw7b-ynyy-h3hf"},{"vulnerability":"VCID-g8hj-bk84-x7fy"},{"vulnerability":"VCID-hwrp-yjtx-23d4"},{"vulnerability":"VCID-m2tg-m821-7ka7"},{"vulnerability":"VCID-m7bj-3gpe-ryhb"},{"vulnerability":"VCID-rpns-xxft-9ff2"},{"vulnerability":"VCID-rx9t-9db6-cbgv"},{"vulnerability":"VCID-t7gs-maju-c3fe"},{"vulnerability":"VCID-tpyh-8rg9-hke5"},{"vulnerability":"VCID-unmt-jsyx-f3bg"},{"vulnerability":"VCID-vfvk-2ts3-53gp"},{"vulnerability":"VCID-x8d6-qvh2-u7da"},{"vulnerability":"VCID-x8ur-qphq-sua1"},{"vulnerability":"VCID-xkz5-x8ta-kkb9"},{"vulnerability":"VCID-z5s7-q73z-4bdr"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}],"aliases":["CVE-2016-9901"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wcqe-uexx-6qa2"}],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@50.1.0-1"}