Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-vsdm-hzfp-ebgz
Vulnerability ID VCID-vsdm-hzfp-ebgz
Aliases CVE-2011-3647
Summary Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
epss 0.00769 https://api.first.org/data/v1/epss?cve=CVE-2011-3647
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2011-46
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3647.json
https://api.first.org/data/v1/epss?cve=CVE-2011-3647
751931 https://bugzilla.redhat.com/show_bug.cgi?id=751931
CVE-2011-3647 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3647
GLSA-201301-01 https://security.gentoo.org/glsa/201301-01
mfsa2011-46 https://www.mozilla.org/en-US/security/advisories/mfsa2011-46
RHSA-2011:1437 https://access.redhat.com/errata/RHSA-2011:1437
RHSA-2011:1439 https://access.redhat.com/errata/RHSA-2011:1439
USN-1251-1 https://usn.ubuntu.com/1251-1/
USN-1254-1 https://usn.ubuntu.com/1254-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.73446
EPSS Score 0.00769
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:08:22.568107+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201301-01 38.0.0