Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie

Type deb

Namespace debian

Name thunderbird

Version 1:60.5.1-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1:60.6.1-1

Latest_non_vulnerable_version 1:140.10.1esr-1~deb13u1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-65mp-nvc7-6kff

vulnerability_id VCID-65mp-nvc7-6kff

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird and
    Firefox, the worst of which could lead to the execution of arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18356.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18356.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-18356

reference_id

reference_type

scores

value	0.02565
scoring_system	epss
scoring_elements	0.85644
published_at	2026-05-12T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85571
published_at	2026-04-24T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.8558
published_at	2026-04-26T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85579
published_at	2026-04-29T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85595
published_at	2026-05-05T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85618
published_at	2026-05-07T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85637
published_at	2026-05-09T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85631
published_at	2026-05-11T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85453
published_at	2026-04-01T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85466
published_at	2026-04-02T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85483
published_at	2026-04-04T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85487
published_at	2026-04-07T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85507
published_at	2026-04-08T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85516
published_at	2026-04-09T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.8553
published_at	2026-04-11T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85528
published_at	2026-04-12T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85524
published_at	2026-04-13T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85548
published_at	2026-04-16T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85553
published_at	2026-04-18T12:55:00Z

value	0.02565
scoring_system	epss
scoring_elements	0.85549
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-18356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17480
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17480

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17481
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17481

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18335
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18335

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18336
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18336

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18337
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18337

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18338
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18338

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18339
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18339

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18340
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18340

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18341
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18341

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18342
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18342

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18343
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18343

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18344
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18344

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18345
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18345

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18348
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18348

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18349
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18349

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18350
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18350

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18352
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18352

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18353
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18353

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18354
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18354

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18355
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18355

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18357
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18357

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18358
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18358

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20065
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20065

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20066
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20066

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20067
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20067

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20068
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20068

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20070
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20070

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1656570
reference_id	1656570
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1656570

reference_url	https://security.archlinux.org/ASA-201812-2
reference_id	ASA-201812-2
reference_type
scores
url	https://security.archlinux.org/ASA-201812-2

reference_url	https://security.archlinux.org/ASA-201902-16
reference_id	ASA-201902-16
reference_type
scores
url	https://security.archlinux.org/ASA-201902-16

reference_url	https://security.archlinux.org/ASA-201902-23
reference_id	ASA-201902-23
reference_type
scores
url	https://security.archlinux.org/ASA-201902-23

reference_url

https://security.archlinux.org/AVG-824

reference_id

AVG-824

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-824

reference_url

https://security.archlinux.org/AVG-896

reference_id

AVG-896

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-896

reference_url

https://security.archlinux.org/AVG-908

reference_id

AVG-908

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-908

reference_url	https://security.gentoo.org/glsa/201903-04
reference_id	GLSA-201903-04
reference_type
scores
url	https://security.gentoo.org/glsa/201903-04

reference_url	https://security.gentoo.org/glsa/201904-07
reference_id	GLSA-201904-07
reference_type
scores
url	https://security.gentoo.org/glsa/201904-07

reference_url	https://security.gentoo.org/glsa/201908-18
reference_id	GLSA-201908-18
reference_type
scores
url	https://security.gentoo.org/glsa/201908-18

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-04

reference_id

mfsa2019-04

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-04

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-05

reference_id

mfsa2019-05

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-05

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_id

mfsa2019-06

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_url	https://access.redhat.com/errata/RHSA-2018:3803
reference_id	RHSA-2018:3803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3803

reference_url	https://access.redhat.com/errata/RHSA-2019:0373
reference_id	RHSA-2019:0373
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0373

reference_url	https://access.redhat.com/errata/RHSA-2019:0374
reference_id	RHSA-2019:0374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0374

reference_url	https://access.redhat.com/errata/RHSA-2019:0680
reference_id	RHSA-2019:0680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0680

reference_url	https://access.redhat.com/errata/RHSA-2019:0681
reference_id	RHSA-2019:0681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0681

reference_url	https://access.redhat.com/errata/RHSA-2019:1144
reference_id	RHSA-2019:1144
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:1144

reference_url	https://usn.ubuntu.com/3896-1/
reference_id	USN-3896-1
reference_type
scores
url	https://usn.ubuntu.com/3896-1/

reference_url	https://usn.ubuntu.com/3897-1/
reference_id	USN-3897-1
reference_type
scores
url	https://usn.ubuntu.com/3897-1/

fixed_packages

url	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.2esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:60.5.1-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-pszh-x9gd-xyg4

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-ufku-v5vq-4yef

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dw5-vpt8-zqbz

vulnerability	VCID-9ag7-z86d-nba9

vulnerability	VCID-qbzp-euvv-q7c7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.1esr-1%3Fdistro=trixie

aliases CVE-2018-18356

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-65mp-nvc7-6kff

url VCID-bddb-ehm2-wqen

vulnerability_id VCID-bddb-ehm2-wqen

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird and
    Firefox, the worst of which could lead to the execution of arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18509.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18509.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-18509

reference_id

reference_type

scores

value	0.00252
scoring_system	epss
scoring_elements	0.48481
published_at	2026-04-01T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48442
published_at	2026-05-11T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48472
published_at	2026-05-12T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48497
published_at	2026-05-09T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48517
published_at	2026-04-02T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.4854
published_at	2026-04-04T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48492
published_at	2026-04-07T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48546
published_at	2026-04-08T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48542
published_at	2026-04-09T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48563
published_at	2026-04-11T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48536
published_at	2026-04-24T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48549
published_at	2026-04-13T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48599
published_at	2026-04-16T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48595
published_at	2026-04-18T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48552
published_at	2026-04-21T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48547
published_at	2026-04-26T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48494
published_at	2026-04-29T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.4841
published_at	2026-05-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-18509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1677613
reference_id	1677613
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1677613

reference_url	https://security.archlinux.org/ASA-201902-23
reference_id	ASA-201902-23
reference_type
scores
url	https://security.archlinux.org/ASA-201902-23

reference_url

https://security.archlinux.org/AVG-908

reference_id

AVG-908

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-908

reference_url	https://security.gentoo.org/glsa/201904-07
reference_id	GLSA-201904-07
reference_type
scores
url	https://security.gentoo.org/glsa/201904-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_id

mfsa2019-06

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_url	https://access.redhat.com/errata/RHSA-2019:0680
reference_id	RHSA-2019:0680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0680

reference_url	https://access.redhat.com/errata/RHSA-2019:0681
reference_id	RHSA-2019:0681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0681

reference_url	https://access.redhat.com/errata/RHSA-2019:1144
reference_id	RHSA-2019:1144
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:1144

reference_url	https://usn.ubuntu.com/3897-1/
reference_id	USN-3897-1
reference_type
scores
url	https://usn.ubuntu.com/3897-1/

fixed_packages

url	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.2esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:60.5.1-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-pszh-x9gd-xyg4

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-ufku-v5vq-4yef

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dw5-vpt8-zqbz

vulnerability	VCID-9ag7-z86d-nba9

vulnerability	VCID-qbzp-euvv-q7c7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.1esr-1%3Fdistro=trixie

aliases CVE-2018-18509

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bddb-ehm2-wqen

url VCID-ushb-eq8b-x3az

vulnerability_id VCID-ushb-eq8b-x3az

summary

Multiple vulnerabilities have been found in Mozilla Thunderbird and
    Firefox, the worst of which could lead to the execution of arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5785.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5785.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-5785

reference_id

reference_type

scores

value	0.00375
scoring_system	epss
scoring_elements	0.59207
published_at	2026-05-12T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59156
published_at	2026-04-24T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59175
published_at	2026-04-26T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59161
published_at	2026-04-29T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59167
published_at	2026-05-07T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59224
published_at	2026-05-09T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.5918
published_at	2026-05-11T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59046
published_at	2026-04-01T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59118
published_at	2026-05-05T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59142
published_at	2026-04-04T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59106
published_at	2026-04-07T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59157
published_at	2026-04-08T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.5917
published_at	2026-04-09T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59189
published_at	2026-04-11T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59171
published_at	2026-04-12T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59152
published_at	2026-04-13T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59188
published_at	2026-04-16T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59193
published_at	2026-04-18T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59172
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-5785

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18500

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18501

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18505

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18512

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5785

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1676991
reference_id	1676991
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1676991

reference_url	https://security.archlinux.org/ASA-201902-16
reference_id	ASA-201902-16
reference_type
scores
url	https://security.archlinux.org/ASA-201902-16

reference_url	https://security.archlinux.org/ASA-201902-23
reference_id	ASA-201902-23
reference_type
scores
url	https://security.archlinux.org/ASA-201902-23

reference_url

https://security.archlinux.org/AVG-896

reference_id

AVG-896

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-896

reference_url

https://security.archlinux.org/AVG-908

reference_id

AVG-908

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-908

reference_url	https://security.gentoo.org/glsa/201903-04
reference_id	GLSA-201903-04
reference_type
scores
url	https://security.gentoo.org/glsa/201903-04

reference_url	https://security.gentoo.org/glsa/201904-07
reference_id	GLSA-201904-07
reference_type
scores
url	https://security.gentoo.org/glsa/201904-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-04

reference_id

mfsa2019-04

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-04

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-05

reference_id

mfsa2019-05

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-05

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_id

mfsa2019-06

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2019-06

reference_url	https://access.redhat.com/errata/RHSA-2019:0373
reference_id	RHSA-2019:0373
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0373

reference_url	https://access.redhat.com/errata/RHSA-2019:0374
reference_id	RHSA-2019:0374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0374

reference_url	https://access.redhat.com/errata/RHSA-2019:0680
reference_id	RHSA-2019:0680
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0680

reference_url	https://access.redhat.com/errata/RHSA-2019:0681
reference_id	RHSA-2019:0681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0681

reference_url	https://access.redhat.com/errata/RHSA-2019:1144
reference_id	RHSA-2019:1144
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:1144

reference_url	https://usn.ubuntu.com/3896-1/
reference_id	USN-3896-1
reference_type
scores
url	https://usn.ubuntu.com/3896-1/

reference_url	https://usn.ubuntu.com/3897-1/
reference_id	USN-3897-1
reference_type
scores
url	https://usn.ubuntu.com/3897-1/

fixed_packages

url	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.2esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.2esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:60.5.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:60.5.1-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-pszh-x9gd-xyg4

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-ufku-v5vq-4yef

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:115.12.0-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.6.0esr-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.8.0esr-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.0esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dw5-vpt8-zqbz

vulnerability	VCID-9ag7-z86d-nba9

vulnerability	VCID-qbzp-euvv-q7c7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.9.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2fqb-r5zb-a7dp

vulnerability	VCID-3kv6-c148-nkhq

vulnerability	VCID-59d3-343b-e3aw

vulnerability	VCID-61r1-arbe-dke4

vulnerability	VCID-7jt2-zr49-7ye5

vulnerability	VCID-95et-ezmb-buau

vulnerability	VCID-9nbw-7c9e-13af

vulnerability	VCID-av7u-3g4m-mugm

vulnerability	VCID-bwth-uepr-z7a3

vulnerability	VCID-cjsm-7gxr-8ygw

vulnerability	VCID-d16s-p141-qbft

vulnerability	VCID-fxjm-ywug-f3d5

vulnerability	VCID-hk2m-rbdy-nqhc

vulnerability	VCID-ma29-qa7e-9qb4

vulnerability	VCID-nge1-4cvg-zqb2

vulnerability	VCID-nyum-jpbc-abew

vulnerability	VCID-p6yz-xs58-u3gm

vulnerability	VCID-pfmd-zv8f-8bfc

vulnerability	VCID-q689-wneh-hbdq

vulnerability	VCID-q8qp-5szp-mfe8

vulnerability	VCID-ruqn-mk9t-57hb

vulnerability	VCID-tv7r-qf2c-dqbm

vulnerability	VCID-w98r-yagc-kkec

vulnerability	VCID-z6tm-b352-5uhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.9.1esr-1%3Fdistro=trixie

url	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
purl	pkg:deb/debian/thunderbird@1:140.10.0esr-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.0esr-1%3Fdistro=trixie

url pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

purl pkg:deb/debian/thunderbird@1:140.10.1esr-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3a6f-173h-fqbz

vulnerability	VCID-4e49-6tg2-e7d9

vulnerability	VCID-pszh-x9gd-xyg4

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:140.10.1esr-1%3Fdistro=trixie

aliases CVE-2019-5785

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ushb-eq8b-x3az

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/thunderbird@1:60.5.1-1%3Fdistro=trixie

Package Instance