{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/1513?format=json","vulnerability_id":"VCID-u1fk-c5jh-4ydv","summary":"If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users.","aliases":[{"alias":"CVE-2018-12403"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1749?format=json","purl":"pkg:alpm/archlinux/firefox@63.0-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@63.0-1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1748?format=json","purl":"pkg:alpm/archlinux/firefox@62.0.3-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2bmn-k25n-v3f8"},{"vulnerability":"VCID-3pet-js6n-gyfe"},{"vulnerability":"VCID-9pxs-eg11-4qec"},{"vulnerability":"VCID-9s8d-7dyf-eqcu"},{"vulnerability":"VCID-dzp5-hz9r-73hh"},{"vulnerability":"VCID-gfs7-5q12-5ycr"},{"vulnerability":"VCID-mbjq-bddf-afc3"},{"vulnerability":"VCID-u1fk-c5jh-4ydv"},{"vulnerability":"VCID-w4pz-897n-8yac"},{"vulnerability":"VCID-wvyv-n7c3-vyfu"},{"vulnerability":"VCID-z1v7-msh8-2qha"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/firefox@62.0.3-2"}],"references":[{"reference_url":"https://security.archlinux.org/ASA-201810-14","reference_id":"ASA-201810-14","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201810-14"},{"reference_url":"https://security.archlinux.org/AVG-787","reference_id":"AVG-787","reference_type":"","scores":[{"value":"Critical","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-787"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2018-26","reference_id":"mfsa2018-26","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2018-26"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u1fk-c5jh-4ydv"}