VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
epss	0.02182	https://api.first.org/data/v1/epss?cve=CVE-2008-5508
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2008-5508
generic_textual	low	https://www.mozilla.org/en-US/security/advisories/mfsa2008-66

System

Score

Found at

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

epss

0.02182

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2008-5508

generic_textual

low

https://www.mozilla.org/en-US/security/advisories/mfsa2008-66

Reference id

Reference type

URL

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5508.json

https://api.first.org/data/v1/epss?cve=CVE-2008-5508

https://bugzilla.mozilla.org/show_bug.cgi?id=425046

https://bugzilla.mozilla.org/show_bug.cgi?id=460803

http://secunia.com/advisories/33184

http://secunia.com/advisories/33188

http://secunia.com/advisories/33189

http://secunia.com/advisories/33203

http://secunia.com/advisories/33204

http://secunia.com/advisories/33205

http://secunia.com/advisories/33216

http://secunia.com/advisories/33231

http://secunia.com/advisories/33408

http://secunia.com/advisories/33415

http://secunia.com/advisories/33421

http://secunia.com/advisories/33433

http://secunia.com/advisories/33434

http://secunia.com/advisories/33523

http://secunia.com/advisories/33547

http://secunia.com/advisories/34501

http://secunia.com/advisories/35080

https://exchange.xforce.ibmcloud.com/vulnerabilities/47414

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11040

http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-258748-1

http://www.debian.org/security/2009/dsa-1696

http://www.debian.org/security/2009/dsa-1697

http://www.debian.org/security/2009/dsa-1704

http://www.debian.org/security/2009/dsa-1707

http://www.mandriva.com/security/advisories?name=MDVSA-2008:244

http://www.mandriva.com/security/advisories?name=MDVSA-2008:245

http://www.mandriva.com/security/advisories?name=MDVSA-2009:012

http://www.mozilla.org/security/announce/2008/mfsa2008-66.html

http://www.redhat.com/support/errata/RHSA-2008-1036.html

http://www.redhat.com/support/errata/RHSA-2008-1037.html

http://www.redhat.com/support/errata/RHSA-2009-0002.html

http://www.securityfocus.com/bid/32882

http://www.securitytracker.com/id?1021426

http://www.ubuntu.com/usn/usn-690-2

http://www.ubuntu.com/usn/usn-701-1

http://www.ubuntu.com/usn/usn-701-2

http://www.vupen.com/english/advisories/2009/0977

476281

https://bugzilla.redhat.com/show_bug.cgi?id=476281

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*

CVE-2008-5508

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5508

CVE-2008-5508

https://nvd.nist.gov/vuln/detail/CVE-2008-5508

GLSA-201301-01

https://security.gentoo.org/glsa/201301-01

mfsa2008-66

https://www.mozilla.org/en-US/security/advisories/mfsa2008-66

RHSA-2008:1036

https://access.redhat.com/errata/RHSA-2008:1036

RHSA-2008:1037

https://access.redhat.com/errata/RHSA-2008:1037

RHSA-2009:0002

https://access.redhat.com/errata/RHSA-2009:0002

USN-690-1

https://usn.ubuntu.com/690-1/

USN-690-2

https://usn.ubuntu.com/690-2/

USN-701-1

https://usn.ubuntu.com/701-1/

USN-701-2

https://usn.ubuntu.com/701-2/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:05:27.553219+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201301-01	38.0.0

2026-04-01T13:05:27.553219+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201301-01

38.0.0

Vulnerability ID	VCID-rjzx-gx6e-23ff
Aliases	CVE-2008-5508
Summary	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
Status	Published
Exploitability	0.5
Weighted Severity	3.9
Risk	1.9
Affected and Fixed Packages	Package Details

Percentile	0.84288
EPSS Score	0.02182
Published At	April 1, 2026, 12:55 p.m.