Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-y9uf-pn44-7qcj
Vulnerability ID VCID-y9uf-pn44-7qcj
Aliases CVE-2009-1392
Summary Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
epss 0.15734 https://api.first.org/data/v1/epss?cve=CVE-2009-1392
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2009-24
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1392.json
https://api.first.org/data/v1/epss?cve=CVE-2009-1392
503568 https://bugzilla.redhat.com/show_bug.cgi?id=503568
CVE-2009-1392 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1392
GLSA-201301-01 https://security.gentoo.org/glsa/201301-01
mfsa2009-24 https://www.mozilla.org/en-US/security/advisories/mfsa2009-24
RHSA-2009:1095 https://access.redhat.com/errata/RHSA-2009:1095
RHSA-2009:1096 https://access.redhat.com/errata/RHSA-2009:1096
RHSA-2009:1125 https://access.redhat.com/errata/RHSA-2009:1125
RHSA-2009:1126 https://access.redhat.com/errata/RHSA-2009:1126
USN-779-1 https://usn.ubuntu.com/779-1/
USN-782-1 https://usn.ubuntu.com/782-1/
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.94684
EPSS Score 0.15734
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:05:49.550307+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201301-01 38.0.0