Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217071	4.3	警告	Canonical	-	Software Properties の ppa.py におけるパッケージリポジトリのGPG 鍵を偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4407	2014-05-16 15:40	2011-11-7	Show	GitHub Exploit DB Packet Storm

217072	7.6	危険	Marc Lehmann	-	rxvt-unicode における任意の X Window のプロパティを操作される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-3121	2014-05-16 15:29	2014-04-26	Show	GitHub Exploit DB Packet Storm

217073	10	危険	オラクル	-	Debian GNU/Linux および Ubuntu 上で稼動する OpenJDK における脆弱性	CWE-noinfo 情報不足	CVE-2014-2405	2014-05-16 15:09	2014-04-24	Show	GitHub Exploit DB Packet Storm

217074	10	危険	オラクル	-	Debian GNU/Linux および Ubuntu 上で稼動する OpenJDK における脆弱性	CWE-noinfo 情報不足	CVE-2014-0462	2014-05-16 15:09	2014-04-24	Show	GitHub Exploit DB Packet Storm

217075	6.8	警告	レッドハット	-	IcedTea6 および IcedTea-Web の Java Network Launching Protocol の実装におけるローカルファイルへのアクセスを許可される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2514	2014-05-16 14:47	2011-07-27	Show	GitHub Exploit DB Packet Storm

217076	5	警告	レッドハット	-	IcedTea6 および IcedTea-Web の Java Network Launching Protocol の実装におけるユーザ名などを取得される脆弱性	CWE-200 情報漏えい	CVE-2011-2513	2014-05-16 14:47	2011-07-27	Show	GitHub Exploit DB Packet Storm

217077	6.9	警告	BMC Software	-	BMC PATROL for AIX における権限を取得される脆弱性	CWE-Other その他	CVE-2014-2591	2014-05-16 14:12	2014-04-9	Show	GitHub Exploit DB Packet Storm

217078	6.8	警告	Open Assessment Technologies S.A.	-	Open Assessment Technologies TAO におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-2989	2014-05-16 12:24	2014-05-7	Show	GitHub Exploit DB Packet Storm

217079	10	危険	ShenZhen Foscam Intelligent Technology	-	Foscam IP camera における任意のカメラを偽装またはハイジャックされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-1849	2014-05-16 12:19	2014-05-8	Show	GitHub Exploit DB Packet Storm

217080	6.8	警告	OpenVPN Technologies	-	OpenVPN Access Server の管理 Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2692	2014-05-16 12:18	2013-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292301	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary cod…	CWE-416 Use After Free	CVE-2012-4212	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292302	-	mozilla	firefox	The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4210	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292303	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote atta…	CWE-200 Information Exposure	CVE-2012-4208	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292304	-	mozilla suse opensuse canonical redhat	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux enterprise_li…	Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x befor…	CWE-416 Use After Free	CVE-2012-4215	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292305	-	mozilla suse opensuse redhat canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.…	CWE-416 Use After Free	CVE-2012-4214	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292306	-	mozilla suse opensuse redhat canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do not prevent use of a "top" frame name-attribut…	CWE-79 Cross-site Scripting	CVE-2012-4209	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292307	-	mozilla suse opensuse redhat debian canonical	firefox seamonkey thunderbird thunderbird_esr linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit enterprise_linux_server en…	The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do…	CWE-79 Cross-site Scripting	CVE-2012-4207	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292308	-	mozilla	firefox	Untrusted search path vulnerability in the installer in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 on Windows allows local users to gain privileges via a Trojan horse DLL in the …	NVD-CWE-Other	CVE-2012-4206	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292309	-	mozilla canonical suse opensuse	firefox seamonkey thunderbird ubuntu_linux linux_enterprise_desktop linux_enterprise_software_development_kit opensuse linux_enterprise_server	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 assign the system principal, rather than the sandbox principal, to XMLHttpRequest objects created in sandboxes, which a…	CWE-352 Origin Validation Error	CVE-2012-4205	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm

292310	-	mozilla suse opensuse canonical	firefox seamonkey thunderbird linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit ubuntu_linux	The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a deni…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4204	2024-11-21 10:42	2012-11-21	Show	GitHub Exploit DB Packet Storm