Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 204011 | 9.8 |
緊急
Network |
libcsp project | - | libcsp ライブラリの csp_if_can.c の csp_can_process_frame におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2016-8596 | 2016-11-2 16:41 | 2016-10-11 | Show | GitHub Exploit DB Packet Storm |
| 204012 | 7.5 |
重要
Network |
Docker | - | Docker エンジンにおけるファイルにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-8867 | 2016-11-2 16:40 | 2016-10-27 | Show | GitHub Exploit DB Packet Storm |
| 204013 | 7.5 |
重要
Network |
dotCMS | - | dotCMS における脆弱性 |
CWE-264 CWE-Other |
CVE-2016-8600 | 2016-11-2 16:24 | 2016-07-7 | Show | GitHub Exploit DB Packet Storm |
| 204014 | 5.3 |
警告
Network |
OpenJPEG project | - | OpenJPEG の convert.c:1719 の pnmtoimage におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2016-9118 | 2016-11-2 15:26 | 2016-10-30 | Show | GitHub Exploit DB Packet Storm |
| 204015 | 6.5 |
警告
Network |
OpenJPEG project | - | OpenJPEG の convert.c(jp2):1289 の imagetopnm におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2016-9117 | 2016-11-2 15:26 | 2016-10-29 | Show | GitHub Exploit DB Packet Storm |
| 204016 | 6.5 |
警告
Network |
OpenJPEG project | - | OpenJPEG の convert.c:2226(jp2) の imagetopnm におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2016-9116 | 2016-11-2 15:26 | 2016-10-29 | Show | GitHub Exploit DB Packet Storm |
| 204017 | 6.5 |
警告
Network |
OpenJPEG project | - | OpenJPEG の convert.c(jp2):942 の imagetotga におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2016-9115 | 2016-11-2 15:26 | 2016-10-29 | Show | GitHub Exploit DB Packet Storm |
| 204018 | 7.5 |
重要
Network |
OpenJPEG project | - | OpenJPEG の convert.c:1943(jp2) の imagetopnm におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2016-9114 | 2016-11-2 15:26 | 2016-10-29 | Show | GitHub Exploit DB Packet Storm |
| 204019 | 7.5 |
重要
Network |
OpenJPEG project | - | OpenJPEG の convertbmp.c:980 の imagetobmp におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2016-9113 | 2016-11-2 15:26 | 2016-10-29 | Show | GitHub Exploit DB Packet Storm |
| 204020 | 7.5 |
重要
Network |
OpenJPEG project | - | OpenJPEG の openjp2/pi.c:523 の opj_pi_next_cprl 関数における浮動小数点例外の脆弱性 |
CWE-Other
その他 |
CVE-2016-9112 | 2016-11-2 15:26 | 2016-10-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292031 | - |
fedoraproject mozilla oracle |
fedora firefox solaris |
Mozilla Firefox before 29.0 on Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scr… |
NVD-CWE-noinfo
|
CVE-2014-1527 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292032 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis… |
CWE-269
Improper Privilege Management |
CVE-2014-1526 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292033 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292034 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292035 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292036 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292037 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292038 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 292039 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 292040 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |