Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 12, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 200811 | 8.8 |
重要
Network |
トレンドマイクロ | - | Trend Micro VMI の /vmi/manager/engine/management/commands/apns_worker.py における任意のコマンドを実行される脆弱性 |
CWE-77
コマンドインジェクション |
CVE-2016-6270 | 2017-02-16 14:30 | 2016-09-30 | Show | GitHub Exploit DB Packet Storm |
| 200812 | 7.8 |
重要
Local |
IBM | - | IBM Security Guardium Database Activity Monito アプライアンスにおけるコマンドを挿入される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2016-6065 | 2017-02-16 14:26 | 2016-12-15 | Show | GitHub Exploit DB Packet Storm |
| 200813 | 6.3 |
警告
Network |
IBM | - | IBM Security Privileged Identity Manager 仮想アプライアンスにおける悪意のあるファイルをアップロードされる脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2016-5990 | 2017-02-16 14:26 | 2016-12-29 | Show | GitHub Exploit DB Packet Storm |
| 200814 | 6.5 |
警告
Network |
IBM | - | IBM Security Privileged Identity Manager 仮想アプライアンスにおける重要な情報を公開される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-5988 | 2017-02-16 14:26 | 2016-12-29 | Show | GitHub Exploit DB Packet Storm |
| 200815 | 5.9 |
警告
Network |
IBM | - | IBM Security Privileged Identity Manager 仮想アプライアンスにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-5966 | 2017-02-16 14:26 | 2016-12-29 | Show | GitHub Exploit DB Packet Storm |
| 200816 | 7.5 |
重要
Network |
IBM | - | IBM Security Privileged Identity Manager における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-5958 | 2017-02-16 14:26 | 2016-12-29 | Show | GitHub Exploit DB Packet Storm |
| 200817 | 7.8 |
重要
Local |
IBM | - | IBM AIX における root レベルの権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-3053 | 2017-02-16 14:26 | 2016-10-17 | Show | GitHub Exploit DB Packet Storm |
| 200818 | 8.8 |
重要
Network |
IBM | - | IBM Security Access Manager におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2016-3029 | 2017-02-16 14:26 | 2016-12-6 | Show | GitHub Exploit DB Packet Storm |
| 200819 | 6.5 |
警告
Network |
IBM | - | IBM Security Access Manager におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2016-3027 | 2017-02-16 14:26 | 2016-12-8 | Show | GitHub Exploit DB Packet Storm |
| 200820 | 4 |
警告
Local |
IBM | - | IBM Security Access Manager における Web ページをローカルに保存される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-3024 | 2017-02-16 14:26 | 2016-12-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 12, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291071 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis… |
CWE-269
Improper Privilege Management |
CVE-2014-1526 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 291072 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 291073 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 291074 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 291075 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 291076 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 291077 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 291078 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 291079 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 291080 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allow remote attackers to cause a denial of service (memory corruption and applicat… |
NVD-CWE-noinfo
|
CVE-2014-1519 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |