Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 19, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 203571 | 9.3 | 危険 | レッドハット 日立 オラクル |
- | Oracle Java SE における Hotspot に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0636 | 2016-11-21 15:32 | 2016-03-23 | Show | GitHub Exploit DB Packet Storm |
| 203572 | 5.9 |
警告
Network |
OpenSSL Project 日立 |
- | OpenSSL の SSLv2 の実装の s2_srvr.c のオラクル保護メカニズムにおける TLS 暗号文データを解読される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-0704 | 2016-11-21 15:32 | 2016-03-1 | Show | GitHub Exploit DB Packet Storm |
| 203573 | 9.8 |
緊急
Network |
Google OpenSSL Project オラクル |
- | OpenSSL の crypto/dsa/dsa_ameth.c の dsa_priv_decode 関数におけるメモリ二重解放の脆弱性 |
CWE-Other
その他 |
CVE-2016-0705 | 2016-11-21 15:32 | 2016-03-1 | Show | GitHub Exploit DB Packet Storm |
| 203574 | 5.1 |
警告
Local |
OpenSSL Project 日立 オラクル |
- | OpenSSL の crypto/bn/bn_exp.c の MOD_EXP_CTIME_COPY_FROM_PREBUF 関数における RSA の鍵を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-0702 | 2016-11-21 15:32 | 2016-03-1 | Show | GitHub Exploit DB Packet Storm |
| 203575 | 4 | 警告 | ヒューレット・パッカード Debian Canonical Apache Software Foundation |
- | Apache Tomcat における SecurityManager の制限を回避される脆弱性 |
CWE-200
情報漏えい |
CVE-2016-0706 | 2016-11-21 15:32 | 2016-01-5 | Show | GitHub Exploit DB Packet Storm |
| 203576 | 10 | 危険 | 日立 Canonical オラクル |
- | Oracle Java SE および Java SE Embedded における 2D に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0494 | 2016-11-21 15:32 | 2016-01-19 | Show | GitHub Exploit DB Packet Storm |
| 203577 | 10 | 危険 | 日立 Canonical オラクル |
- | 複数の Oracle Java 製品における AWT に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0483 | 2016-11-21 15:32 | 2016-01-19 | Show | GitHub Exploit DB Packet Storm |
| 203578 | 5.8 | 警告 | 日立 オラクル |
- | 複数の Oracle Java 製品における Libraries に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0475 | 2016-11-21 15:32 | 2016-01-19 | Show | GitHub Exploit DB Packet Storm |
| 203579 | 5 | 警告 | 日立 Canonical オラクル |
- | 複数の Oracle Java 製品 における JAXP に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0466 | 2016-11-21 15:31 | 2016-01-19 | Show | GitHub Exploit DB Packet Storm |
| 203580 | 4 | 警告 | 日立 Canonical オラクル |
- | Oracle Java SE および Java SE Embedded における JMX に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-0448 | 2016-11-21 15:31 | 2016-01-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 20, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292031 | - |
fedoraproject mozilla oracle |
fedora firefox solaris |
Mozilla Firefox before 29.0 on Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scr… |
NVD-CWE-noinfo
|
CVE-2014-1527 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292032 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis… |
CWE-269
Improper Privilege Management |
CVE-2014-1526 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292033 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292034 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292035 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292036 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292037 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292038 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292039 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292040 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |