Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-r4x1-akj3-b3hr
Vulnerability ID VCID-r4x1-akj3-b3hr
Aliases CVE-2009-1838
Summary Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
epss 0.04629 https://api.first.org/data/v1/epss?cve=CVE-2009-1838
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-29
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1838.json
https://api.first.org/data/v1/epss?cve=CVE-2009-1838
503580 https://bugzilla.redhat.com/show_bug.cgi?id=503580
CVE-2009-1838 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1838
GLSA-201301-01 https://security.gentoo.org/glsa/201301-01
mfsa2009-29 https://www.mozilla.org/en-US/security/advisories/mfsa2009-29
RHSA-2009:1095 https://access.redhat.com/errata/RHSA-2009:1095
RHSA-2009:1096 https://access.redhat.com/errata/RHSA-2009:1096
RHSA-2009:1125 https://access.redhat.com/errata/RHSA-2009:1125
RHSA-2009:1126 https://access.redhat.com/errata/RHSA-2009:1126
USN-779-1 https://usn.ubuntu.com/779-1/
USN-782-1 https://usn.ubuntu.com/782-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.89231
EPSS Score 0.04629
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:05:55.311591+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201301-01 38.0.0