VulnerableCode Vulnerability Details - VCID-vfbw-j8m3-bbdm

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-vfbw-j8m3-bbdm

Essentials
Severities (9)
References (11)
Severity details (1)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-vfbw-j8m3-bbdm
Aliases	CVE-2012-1940
Summary	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
Status	Published
Exploitability	0.5
Weighted Severity	9.0
Risk	4.5
Affected and Fixed Packages	Package Details

Weaknesses (2)

CWE-416	Use After Free
CWE-119	Improper Restriction of Operations within the Bounds of a Memory Buffer

System	Score	Found at
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
epss	0.03035	https://api.first.org/data/v1/epss?cve=CVE-2012-1940
generic_textual	critical	https://www.mozilla.org/en-US/security/advisories/mfsa2012-40

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1940.json
		https://api.first.org/data/v1/epss?cve=CVE-2012-1940
827843		https://bugzilla.redhat.com/show_bug.cgi?id=827843
CVE-2012-1940		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1940
GLSA-201301-01		https://security.gentoo.org/glsa/201301-01
mfsa2012-40		https://www.mozilla.org/en-US/security/advisories/mfsa2012-40
RHSA-2012:0710		https://access.redhat.com/errata/RHSA-2012:0710
RHSA-2012:0715		https://access.redhat.com/errata/RHSA-2012:0715
USN-1463-1		https://usn.ubuntu.com/1463-1/
USN-1463-4		https://usn.ubuntu.com/1463-4/
USN-1463-6		https://usn.ubuntu.com/1463-6/

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.86601
EPSS Score	0.03035
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:08:55.633653+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201301-01	38.0.0