Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216221	10	危険	アドビシステムズ	-	Windows および Mac OS X 上で稼働する Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0567	2014-09-25 17:49	2014-09-16	Show	GitHub Exploit DB Packet Storm

216222	10	危険	アドビシステムズ	-	Windows 上で稼働する Adobe Reader および Acrobat におけるサンドボックス保護メカニズムを回避される脆弱性	CWE-noinfo 情報不足	CVE-2014-0568	2014-09-25 17:47	2014-09-16	Show	GitHub Exploit DB Packet Storm

216223	2.6	注意	Bump Technologies, Inc.	-	Android 版 Bump における暗黙的 Intent の扱いに関する脆弱性	CWE-DesignError	CVE-2014-5320	2014-09-25 17:43	2014-09-19	Show	GitHub Exploit DB Packet Storm

216224	6.5	警告	Huge-IT	-	WordPress 用 Huge-IT Image Gallery プラグインの admin/gallery_func.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-7153	2014-09-25 12:18	2014-08-25	Show	GitHub Exploit DB Packet Storm

216225	4	警告	ヤフー株式会社	-	Yahoo!ボックス(Android版) における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-5881	2014-09-25 12:09	2014-09-25	Show	GitHub Exploit DB Packet Storm

216226	5	警告	アップル	-	Safari におけるアプリケーションキャッシュの取扱いに関する問題	CWE-DesignError	CVE-2014-4409	2014-09-25 12:01	2014-09-17	Show	GitHub Exploit DB Packet Storm

216227	7.2	危険	Cobham plc	-	Cobham AVIATOR 700D および 700E 衛星通信用端末における特権的端末セッションを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-2942	2014-09-25 11:57	2014-08-7	Show	GitHub Exploit DB Packet Storm

216228	4	警告	FileMaker, Inc	-	FileMaker Pro における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-5321	2014-09-24 18:04	2014-09-18	Show	GitHub Exploit DB Packet Storm

216229	6.1	警告	シスコシステムズ	-	Cisco Network Convergence System 6000 シリーズデバイス上で稼働する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3379	2014-09-24 17:58	2014-09-19	Show	GitHub Exploit DB Packet Storm

216230	5	警告	シスコシステムズ	-	Cisco IOS XR の tacacsd におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3378	2014-09-24 17:56	2014-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293191	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.…	CWE-787 Out-of-bounds Write	CVE-2012-5839	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293192	-		mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving…	CWE-94 Code Injection	CVE-2012-5836	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293193	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows…	CWE-190 Integer Overflow or Wraparound	CVE-2012-5835	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293194	-		mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey befor…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5833	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293195	8.8	HIGH Network	mozilla redhat canonical opensuse suse	firefox seamonkey thunderbird thunderbird_esr enterprise_linux_server enterprise_linux_workstation enterprise_linux_desktop enterprise_linux_server_eus enterprise_linux_eus	Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allow…	CWE-416 Use After Free	CVE-2012-5830	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293196	-		mozilla suse opensuse redhat canonical debian	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…	CWE-787 Out-of-bounds Write	CVE-2012-5829	2024-11-21 10:45	2012-11-21	Show	GitHub Exploit DB Packet Storm

293197	-		vmware	esxi esx	The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.	CWE-20 Improper Input Validation	CVE-2012-5703	2024-11-21 10:45	2012-11-20	Show	GitHub Exploit DB Packet Storm

293198	-		adobe	coldfusion	Unspecified vulnerability in Adobe ColdFusion 10 before Update 5, when Internet Information Services (IIS) is used, allows attackers to cause a denial of service via unknown vectors.	NVD-CWE-noinfo	CVE-2012-5674	2024-11-21 10:45	2012-11-20	Show	GitHub Exploit DB Packet Storm

293199	-		google	web_toolkit	Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 through 2.5 Final, as used in JBoss Operations Network (ON) 3.1.1 and possibly other products, allows remote attackers to inje…	CWE-79 Cross-site Scripting	CVE-2012-5920	2024-11-21 10:45	2012-11-20	Show	GitHub Exploit DB Packet Storm

293200	-		havalite	cms	Multiple cross-site scripting (XSS) vulnerabilities in Havalite 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) find or (2) replace fields to havalite/find…	CWE-79 Cross-site Scripting	CVE-2012-5919	2024-11-21 10:45	2012-11-19	Show	GitHub Exploit DB Packet Storm