Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
229801 6.9 警告 Mozilla Foundation - 複数の Mozilla 製品の Mozilla アップデータにおける権限を取得される脆弱性 CWE-Other
その他
CVE-2013-0797 2013-06-19 16:16 2013-04-2 Show GitHub Exploit DB Packet Storm
229802 5 警告 Mozilla Foundation - 複数の Mozilla 製品で使用される NSS におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-0791 2013-06-19 15:47 2013-04-2 Show GitHub Exploit DB Packet Storm
229803 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の editor/libeditor/base/nsEditor.cpp における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2013-0787 2013-06-19 15:36 2013-03-7 Show GitHub Exploit DB Packet Storm
229804 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2013-0783 2013-06-19 15:31 2013-02-19 Show GitHub Exploit DB Packet Storm
229805 10 危険 Mozilla Foundation - 複数の Mozilla 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-0782 2013-06-19 15:18 2013-02-19 Show GitHub Exploit DB Packet Storm
229806 5.4 警告 シスコシステムズ - Cisco ASA CX Context-Aware Security ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-1203 2013-06-19 14:32 2013-06-17 Show GitHub Exploit DB Packet Storm
229807 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2013-0780 2013-06-19 11:55 2013-02-19 Show GitHub Exploit DB Packet Storm
229808 4 警告 Mozilla Foundation - 複数の Mozilla 製品におけるアドレスバーを偽造される脆弱性 CWE-noinfo
情報不足
CVE-2013-0776 2013-06-19 11:10 2013-02-19 Show GitHub Exploit DB Packet Storm
229809 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsImageLoadingContent::OnStopContainer 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2013-0775 2013-06-19 11:07 2013-02-19 Show GitHub Exploit DB Packet Storm
229810 10 危険 Mozilla Foundation - 複数の Mozilla 製品の COW および SOW の実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-0773 2013-06-19 11:05 2013-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292961 - rubyonrails rails activerecord/lib/active_record/relation/query_methods.rb in Active Record in Ruby on Rails 4.0.x before 4.0.9 and 4.1.x before 4.1.5 allows remote attackers to bypass the strong parameters protection… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3514 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292962 - opensuse
apache
canonical
apple
redhat
opensuse
subversion
ubuntu_linux
xcode
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server_eus
enterprise_linux_server
enterprise_linux_hpc_node
Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers … CWE-255
Credentials Management
CVE-2014-3528 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292963 - apache
opensuse
canonical
apple
subversion
opensuse
ubuntu_linux
xcode
The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name (CN) or subjectAltName field of the X.509 certif… CWE-297
 Improper Validation of Certificate with Host Mismatch
CVE-2014-3522 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292964 - apache
canonical
serf_project
subversion
ubuntu_linux
serf
The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in t… NVD-CWE-Other
CVE-2014-3504 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292965 - redhat resteasy
jboss_enterprise_application_platform
RESTEasy 2.3.1 before 2.3.8.SP2 and 3.x before 3.0.9, as used in Red Hat JBoss Enterprise Application Platform (EAP) 6.3.0, does not disable external entities when the resteasy.document.expand.entity… NVD-CWE-Other
CVE-2014-3490 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292966 - redhat jboss_enterprise_application_platform The isCallerInRole function in SimpleSecurityManager in JBoss Application Server (AS) 7, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.3.0, does not properly check caller roles, … CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3472 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292967 - redhat jboss_enterprise_application_platform The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) 6.2.0 and 6.3.0, does not properly enforce the method level restrictions for outbo… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3464 2024-11-21 11:08 2014-08-20 Show GitHub Exploit DB Packet Storm
292968 - openssl openssl Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have uns… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3512 2024-11-21 11:08 2014-08-14 Show GitHub Exploit DB Packet Storm
292969 - openssl openssl The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in comm… NVD-CWE-noinfo
CVE-2014-3511 2024-11-21 11:08 2014-08-14 Show GitHub Exploit DB Packet Storm
292970 - openssl openssl The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL poi… NVD-CWE-Other
CVE-2014-3510 2024-11-21 11:08 2014-08-14 Show GitHub Exploit DB Packet Storm