Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/94632?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "type": "deb", "namespace": "debian", "name": "firefox", "version": "123.0-1", "qualifiers": { "distro": "sid" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "124.0-1", "latest_non_vulnerable_version": "151.0.3-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92?format=api", "vulnerability_id": "VCID-2a4c-pjqa-63bv", "summary": "A malicious website could have used a combination of exiting fullscreen mode and requestPointerLock to cause the user's mouse to be re-positioned unexpectedly, which could have led to user confusion and inadvertently granting permissions they did not intend to grant.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42192", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42183", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42218", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42246", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42235", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265353", "reference_id": "2265353", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265353" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1860065", "reference_id": "show_bug.cgi?id=1860065", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T16:17:48Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1860065" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1550" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2a4c-pjqa-63bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90?format=api", "vulnerability_id": "VCID-3hnn-u3at-bqb8", "summary": "A website could have obscured the fullscreen notification by using a dropdown select input element. This could have led to user confusion and possible spoofing attacks.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1548.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1548.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.59745", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.59749", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.59739", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.5972", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00379", "scoring_system": "epss", "scoring_elements": "0.5974", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265351", "reference_id": "2265351", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265351" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1832627", "reference_id": "show_bug.cgi?id=1832627", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T18:33:11Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1832627" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1548" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3hnn-u3at-bqb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/93?format=api", "vulnerability_id": "VCID-4qhn-ntkb-8bh5", "summary": "Set-Cookie response headers were being incorrectly honored in multipart HTTP responses. If an attacker could control the Content-Type response header, as well as control part of the response body, they could inject Set-Cookie response headers that would have been honored by the browser.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00291", "scoring_system": "epss", "scoring_elements": "0.52772", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00291", "scoring_system": "epss", "scoring_elements": "0.52747", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00291", "scoring_system": "epss", "scoring_elements": "0.52773", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00291", "scoring_system": "epss", "scoring_elements": "0.5279", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00291", "scoring_system": "epss", "scoring_elements": "0.52784", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265354", "reference_id": "2265354", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265354" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1864385", "reference_id": "show_bug.cgi?id=1864385", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T19:24:43Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1864385" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1551" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4qhn-ntkb-8bh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/193?format=api", "vulnerability_id": "VCID-7g66-57mf-ukgv", "summary": "When opening a website using the firefox:// protocol handler, SameSite cookies were not properly respected.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1555", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17423", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17528", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17524", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17487", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17406", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1555" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "8.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:52:30Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1873223", "reference_id": "show_bug.cgi?id=1873223", "reference_type": "", "scores": [ { "value": "8.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:52:30Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1873223" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1555" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7g66-57mf-ukgv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/195?format=api", "vulnerability_id": "VCID-8baq-vf7m-1ygh", "summary": "Memory safety bugs present in Firefox 122. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1557", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59442", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.5945", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59453", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59444", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59424", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1557" }, { "reference_url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1746471%2C1848829%2C1864011%2C1869175%2C1869455%2C1869938%2C1871606", "reference_id": "buglist.cgi?bug_id=1746471%2C1848829%2C1864011%2C1869175%2C1869455%2C1869938%2C1871606", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T16:50:01Z/" } ], "url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1746471%2C1848829%2C1864011%2C1869175%2C1869455%2C1869938%2C1871606" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T16:50:01Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1557" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8baq-vf7m-1ygh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/194?format=api", "vulnerability_id": "VCID-b1x3-tmmq-xygr", "summary": "The incorrect object was checked for NULL in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1556", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59433", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.5944", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59443", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59435", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00374", "scoring_system": "epss", "scoring_elements": "0.59415", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1556" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T15:35:34Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1870414", "reference_id": "show_bug.cgi?id=1870414", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T15:35:34Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1870414" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1556" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b1x3-tmmq-xygr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91?format=api", "vulnerability_id": "VCID-bbr4-fhcs-63gz", "summary": "If a website set a large custom cursor, portions of the cursor could have overlapped with the permission dialog, potentially resulting in user confusion and unexpected granted permissions.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1549.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1549.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.5694", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56947", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56939", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56921", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00339", "scoring_system": "epss", "scoring_elements": "0.56935", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265352", "reference_id": "2265352", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265352" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1833814", "reference_id": "show_bug.cgi?id=1833814", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-29T15:25:48Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1833814" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1549" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbr4-fhcs-63gz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/192?format=api", "vulnerability_id": "VCID-dx4f-atux-sfeh", "summary": "The fetch() API and navigation incorrectly shared the same cache, as the cache key did not include the optional headers fetch() may contain. Under the correct circumstances, an attacker may have been able to poison the local browser cache by priming it with a fetch() response controlled by the additional headers. Upon navigation to the same URL, the user would see the cached response instead of the expected response.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1554", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45818", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45847", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45851", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45831", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45805", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1554" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-08-15T19:35:02Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1816390", "reference_id": "show_bug.cgi?id=1816390", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-08-15T19:35:02Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1816390" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1554" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dx4f-atux-sfeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/95?format=api", "vulnerability_id": "VCID-r461-99bu-nuet", "summary": "Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1553.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1553.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00435", "scoring_system": "epss", "scoring_elements": "0.63296", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00435", "scoring_system": "epss", "scoring_elements": "0.63303", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00435", "scoring_system": "epss", "scoring_elements": "0.63297", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00435", "scoring_system": "epss", "scoring_elements": "0.63279", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00435", "scoring_system": "epss", "scoring_elements": "0.63292", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1553" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265356", "reference_id": "2265356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265356" }, { "reference_url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286", "reference_id": "buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://bugzilla.mozilla.org/buglist.cgi?bug_id=1855686%2C1867982%2C1871498%2C1872296%2C1873521%2C1873577%2C1873597%2C1873866%2C1874080%2C1874740%2C1875795%2C1875906%2C1876425%2C1878211%2C1878286" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-20T19:43:56Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1553" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r461-99bu-nuet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/88?format=api", "vulnerability_id": "VCID-s7f5-djtj-yub2", "summary": "When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00499", "scoring_system": "epss", "scoring_elements": "0.66313", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00499", "scoring_system": "epss", "scoring_elements": "0.66321", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00499", "scoring_system": "epss", "scoring_elements": "0.66311", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00499", "scoring_system": "epss", "scoring_elements": "0.66292", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00499", "scoring_system": "epss", "scoring_elements": "0.66306", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265349", "reference_id": "2265349", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265349" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1843752", "reference_id": "show_bug.cgi?id=1843752", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T15:13:55Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1843752" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1546" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s7f5-djtj-yub2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/89?format=api", "vulnerability_id": "VCID-vkdm-dx92-zbbx", "summary": "Through a series of API calls and redirects, an attacker-controlled alert dialog could have been displayed on another website (with the victim website's URL shown).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1547.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1547.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0073", "scoring_system": "epss", "scoring_elements": "0.73085", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.0073", "scoring_system": "epss", "scoring_elements": "0.73091", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0073", "scoring_system": "epss", "scoring_elements": "0.73073", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0073", "scoring_system": "epss", "scoring_elements": "0.7306", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265350", "reference_id": "2265350", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265350" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1877879", "reference_id": "show_bug.cgi?id=1877879", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-28T17:28:49Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1877879" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1547" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vkdm-dx92-zbbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94?format=api", "vulnerability_id": "VCID-y94b-bdrg-fbh2", "summary": "Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects 32-bit ARM devices.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1552.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1552.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51984", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51993", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51961", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51941", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51972", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1547" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1548" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1549" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265355", "reference_id": "2265355", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265355" }, { "reference_url": "https://security.gentoo.org/glsa/202405-15", "reference_id": "GLSA-202405-15", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-15" }, { "reference_url": "https://security.gentoo.org/glsa/202405-32", "reference_id": "GLSA-202405-32", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-32" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-05" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-05/", "reference_id": "mfsa2024-05", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-05/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-06" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-06/", "reference_id": "mfsa2024-06", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-06/" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "high", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2024-07" }, { "reference_url": "https://www.mozilla.org/security/advisories/mfsa2024-07/", "reference_id": "mfsa2024-07", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://www.mozilla.org/security/advisories/mfsa2024-07/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html", "reference_id": "msg00000.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00000.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html", "reference_id": "msg00001.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00001.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0952", "reference_id": "RHSA-2024:0952", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0952" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0955", "reference_id": "RHSA-2024:0955", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0957", "reference_id": "RHSA-2024:0957", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0957" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0958", "reference_id": "RHSA-2024:0958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0959", "reference_id": "RHSA-2024:0959", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0959" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0960", "reference_id": "RHSA-2024:0960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0961", "reference_id": "RHSA-2024:0961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0962", "reference_id": "RHSA-2024:0962", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0963", "reference_id": "RHSA-2024:0963", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0963" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0964", "reference_id": "RHSA-2024:0964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0968", "reference_id": "RHSA-2024:0968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0969", "reference_id": "RHSA-2024:0969", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0969" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0970", "reference_id": "RHSA-2024:0970", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0970" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0971", "reference_id": "RHSA-2024:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0972", "reference_id": "RHSA-2024:0972", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0972" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0976", "reference_id": "RHSA-2024:0976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0983", "reference_id": "RHSA-2024:0983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0983" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0984", "reference_id": "RHSA-2024:0984", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0984" }, { "reference_url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1874502", "reference_id": "show_bug.cgi?id=1874502", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-20T17:50:58Z/" } ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1874502" }, { "reference_url": "https://usn.ubuntu.com/6649-1/", "reference_id": "USN-6649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6649-1/" }, { "reference_url": "https://usn.ubuntu.com/6669-1/", "reference_id": "USN-6669-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6669-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94632?format=api", "purl": "pkg:deb/debian/firefox@123.0-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }, { "url": "http://public2.vulnerablecode.io/api/packages/94464?format=api", "purl": "pkg:deb/debian/firefox@151.0.3-1?distro=sid", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@151.0.3-1%3Fdistro=sid" } ], "aliases": [ "CVE-2024-1552" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y94b-bdrg-fbh2" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/firefox@123.0-1%3Fdistro=sid" }