{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1255?format=json","vulnerability_id":"VCID-zjej-aua1-abbc","summary":"Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page.","aliases":[{"alias":"CVE-2021-23998"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1549?format=json","purl":"pkg:alpm/archlinux/firefox@88.0-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qpcc-4pq3-vud1"},{"vulnerability":"VCID-z1sm-aubn-afcb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@88.0-1"},{"url":"http://public2.vulnerablecode.io/api/packages/2418?format=json","purl":"pkg:alpm/archlinux/thunderbird@78.10.0-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.10.0-1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2424?format=json","purl":"pkg:alpm/archlinux/firefox@87.0-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5fw4-9nf9-h3d7"},{"vulnerability":"VCID-64a3-rmee-qfb1"},{"vulnerability":"VCID-6ukw-38xv-huc2"},{"vulnerability":"VCID-7ex1-ufcv-5yg8"},{"vulnerability":"VCID-7nqh-truu-7khb"},{"vulnerability":"VCID-7s86-8m73-wkax"},{"vulnerability":"VCID-bdcn-ak2b-1qbv"},{"vulnerability":"VCID-fhb3-5sbs-s7cq"},{"vulnerability":"VCID-ppcj-1ng5-53hq"},{"vulnerability":"VCID-xae7-bcs3-x7b1"},{"vulnerability":"VCID-zjej-aua1-abbc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@87.0-2"},{"url":"http://public2.vulnerablecode.io/api/packages/2417?format=json","purl":"pkg:alpm/archlinux/thunderbird@78.9.1-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5fw4-9nf9-h3d7"},{"vulnerability":"VCID-7ex1-ufcv-5yg8"},{"vulnerability":"VCID-7nqh-truu-7khb"},{"vulnerability":"VCID-ab23-e5u8-ykck"},{"vulnerability":"VCID-fhb3-5sbs-s7cq"},{"vulnerability":"VCID-ppcj-1ng5-53hq"},{"vulnerability":"VCID-zjej-aua1-abbc"},{"vulnerability":"VCID-zuvn-gw4m-47c9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.9.1-3"}],"references":[{"reference_url":"https://security.archlinux.org/ASA-202104-3","reference_id":"ASA-202104-3","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202104-3"},{"reference_url":"https://security.archlinux.org/ASA-202104-4","reference_id":"ASA-202104-4","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202104-4"},{"reference_url":"https://security.archlinux.org/AVG-1834","reference_id":"AVG-1834","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1834"},{"reference_url":"https://security.archlinux.org/AVG-1836","reference_id":"AVG-1836","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1836"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-14","reference_id":"mfsa2021-14","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-14"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-15","reference_id":"mfsa2021-15","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-15"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-16","reference_id":"mfsa2021-16","reference_type":"","scores":[{"value":"high","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2021-16"}],"weaknesses":[],"exploits":[],"severity_range_score":"7.0 - 8.9","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zjej-aua1-abbc"}