Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201001	6.3	警告 Network	NetApp	-	NetApp Snap Creator Framework におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-5372	2017-02-21 11:40	2016-06-22	Show	GitHub Exploit DB Packet Storm

201002	7.5	重要 Network	TalariaX Pte Ltd	-	SendQuick Entera および Avera デバイスのアプリケーションにおけるシステムをシャットダウンされる脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-5136	2017-02-21 11:09	2017-02-5	Show	GitHub Exploit DB Packet Storm

201003	5.4	警告 Network	シスコシステムズ	-	Cisco Prime Service Catalog の Web フレームワークにおけるシステムにログインしているユーザに対して URL リダイレクト攻撃を実行される脆弱性	CWE-601 オープンリダイレクト	CVE-2017-3810	2017-02-21 11:07	2017-02-1	Show	GitHub Exploit DB Packet Storm

201004	6.1	警告 Network	Plone Foundation	-	Plone の Zope ZMI の検索機能の manage_findResult コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-7147	2017-02-21 11:05	2016-09-5	Show	GitHub Exploit DB Packet Storm

201005	9.1	緊急 Network	SaltStack	-	Salt における同一の ID を持つ minion を読まれる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-9639	2017-02-20 18:16	2016-11-28	Show	GitHub Exploit DB Packet Storm

201006	5.2	警告 Adjacent	Tenable, Inc.	-	Nessus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9260	2017-02-20 17:43	2017-01-24	Show	GitHub Exploit DB Packet Storm

201007	7.5	重要 Network	日本電気 Apache Software Foundation	-	Apache HTTP Web Server の HTTP/2 プロトコルの処理にサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2016-8740	2017-02-20 17:39	2016-12-4	Show	GitHub Exploit DB Packet Storm

201008	7.2	重要 Network	iRZ Company	-	iRZ RUH2 におけるデータを変更される脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2016-2309	2017-02-20 17:10	2016-05-17	Show	GitHub Exploit DB Packet Storm

201009	7.8	重要 Local	Google	-	メディアサーバの libopus の silk/NLSF_stabilize.c における情報を公開される脆弱性	CWE-119 バッファエラー	CVE-2017-0381	2017-02-20 16:38	2017-01-3	Show	GitHub Exploit DB Packet Storm

201010	5.9	警告 Network	DELL EMC (旧 EMC Corporation) 日立	-	複数の EMC RSA BSAFE 製品における秘密鍵の prime を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0887	2017-02-20 16:14	2016-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291481	-		coreftp	core_ftp	Core FTP Server 1.2 before build 515 allows remote attackers to cause a denial of service (reachable assertion and crash) via an AUTH SSL command with malformed data, as demonstrated by pressing the …	CWE-362 Race Condition	CVE-2014-1441	2024-11-21 11:04	2014-05-2	Show	GitHub Exploit DB Packet Storm

291482	9.8	CRITICAL Network	mozilla fedoraproject canonical debian redhat opensuse suse	thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li…	Use-after-free vulnerability in the nsHostResolver::ConditionallyRefreshRecord function in libxul.so in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonk…	CWE-416 Use After Free	CVE-2014-1532	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291483	-		canonical opensuse_project opensuse oracle mozilla fedoraproject	ubuntu_linux opensuse solaris firefox seamonkey fedora	The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo in Mozilla Firefox 28.0 and SeaMonkey 2.25 on Windows, allows remote attackers to execute arbitrary code or cause a denial of ser…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1528	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291484	-		fedoraproject mozilla oracle	fedora firefox solaris	Mozilla Firefox before 29.0 on Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scr…	NVD-CWE-noinfo	CVE-2014-1527	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291485	-		mozilla canonical opensuse fedoraproject	firefox seamonkey ubuntu_linux opensuse fedora	The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis…	CWE-269 Improper Privilege Management	CVE-2014-1526	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291486	-		mozilla canonical opensuse fedoraproject	firefox seamonkey ubuntu_linux opensuse fedora	The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2014-1525	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291487	8.8	HIGH Network	mozilla canonical debian redhat fedoraproject opensuse suse	thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server…	Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2…	CWE-416 Use After Free	CVE-2014-1531	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291488	6.1	MEDIUM Network	mozilla fedoraproject canonical debian redhat opensuse suse	thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li…	The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi…	CWE-79 Cross-site Scripting	CVE-2014-1530	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291489	8.8	HIGH Network	mozilla canonical debian redhat fedoraproject opensuse suse	thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server…	The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r…	CWE-269 Improper Privilege Management	CVE-2014-1529	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm

291490	9.8	CRITICAL Network	mozilla canonical debian redhat opensuse suse fedoraproject	thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server…	The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj…	CWE-120 Classic Buffer Overflow	CVE-2014-1524	2024-11-21 11:04	2014-04-30	Show	GitHub Exploit DB Packet Storm