Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2501 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-8956 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2502 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8957 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2503 8.6 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-668
CWE-693
CVE-2026-8958 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2504 9.6 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-20
CWE-693
CVE-2026-8959 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2505 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8960 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2506 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8961 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2507 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-8962 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
2508 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8963 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
2509 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-8964 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
2510 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-8965 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344781 - oracle application_server
application_server_web_cache
oracle9i 		Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with world-readable permissions under the web root, which allows remote attackers to obtain sensitive information derived from the JSP c… NVD-CWE-Other
CVE-2002-0565 2017-12-19 11:29 2002-07-3 Show GitHub Exploit DB Packet Storm
344782 - linux linux_kernel The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key. NVD-CWE-Other
CVE-2002-0570 2017-12-19 11:29 2002-07-3 Show GitHub Exploit DB Packet Storm
344783 - freebsd
netbsd
openbsd 		freebsd
netbsd
openbsd 		Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel h… NVD-CWE-Other
CVE-2002-2092 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344784 - sgi irix The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin. NVD-CWE-Other
CVE-2002-2093 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344785 - maradns maradns The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets. NVD-CWE-Other
CVE-2002-2097 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344786 - axspawn axspawn Buffer overflow in axspawn.c in Axspawn-pam before 0.2.1a allows remote attackers to execute arbitrary code via large packets. NVD-CWE-Other
CVE-2002-2098 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344787 - gnu data_display_debugger Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not ins… NVD-CWE-Other
CVE-2002-2099 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344788 - ganglia php_rrd_web_client graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function. NVD-CWE-Other
CVE-2002-2104 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344789 - microsoft windows_xp Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file. NVD-CWE-Other
CVE-2002-2105 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm
344790 - wikkitikkitavi wikkitikkitavi PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php. NVD-CWE-Other
CVE-2002-2106 2017-12-19 11:29 2002-12-31 Show GitHub Exploit DB Packet Storm