Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
252921 6.9 警告 ImageMagick - ImageMagick の configure.c における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-4167 2012-06-26 14:16 2010-11-22 Show GitHub Exploit DB Packet Storm
252922 6.8 警告 ImageMagick
レッドハット
- Imagemagick の ReadDIBImage() 関数におけるバッファオーバーフローの脆弱性 CWE-119
CWE-189
CVE-2007-4988 2012-06-26 14:16 2007-09-24 Show GitHub Exploit DB Packet Storm
252923 9.3 危険 ImageMagick - Imagemagick の ReadBlobString() 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題
CVE-2007-4987 2012-06-26 14:16 2007-09-24 Show GitHub Exploit DB Packet Storm
252924 7.5 危険 サイバートラスト株式会社
ImageMagick
レッドハット
- Imagemagick の複数の複数のイメージファイル処理の不備によるバッファオーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2007-4986 2012-06-26 14:15 2007-09-24 Show GitHub Exploit DB Packet Storm
252925 4.3 警告 サイバートラスト株式会社
ImageMagick
レッドハット
- Imagemagick の関数の呼び出し処理の不備によるサービス運用妨害 (DoS) の脆弱性 CWE-399
CWE-DesignError
CVE-2007-4985 2012-06-26 14:15 2007-09-24 Show GitHub Exploit DB Packet Storm
252926 5 警告 サイバートラスト株式会社
ImageMagick
ターボリナックス
レッドハット
- ImageMagick の XWD ファイルの処理における無限ループが発生する脆弱性 - CVE-2005-1739 2012-06-26 14:15 2005-05-21 Show GitHub Exploit DB Packet Storm
252927 7.5 危険 ターボリナックス
レッドハット
- ImageMagick の SGI ファイルの取り扱いにおけるバッファオーバーフローの脆弱性 - CVE-2005-0762 2012-06-26 14:14 2005-03-23 Show GitHub Exploit DB Packet Storm
252928 5 警告 ターボリナックス
レッドハット
- ImageMagick における不正な PSD ファイルによるサービス運用妨害 (DoS) の脆弱性 - CVE-2005-0761 2012-06-26 14:14 2005-03-23 Show GitHub Exploit DB Packet Storm
252929 5 警告 ターボリナックス
レッドハット
- ImageMagick の TIFF デコーダにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2005-0760 2012-06-26 14:14 2005-03-23 Show GitHub Exploit DB Packet Storm
252930 6.9 警告 IBM - IBM AIX の libodm.a における任意のファイルを上書される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2179 2012-06-26 14:12 2012-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259641 9.8 CRITICAL
Network
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
debian_linux
thunderbird
firefox
firefox_…
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5459 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259642 6.1 MEDIUM
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
firefox
fire…
If a page is loaded from an original site through a hyperlink and contains a redirect to a "data:text/html" URL, triggering a reload will run the reloaded "data:text/html" page with its origin set in… CWE-79
Cross-site Scripting
CVE-2017-5466 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259643 9.1 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird
An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could the… CWE-125
Out-of-bounds Read
CVE-2017-5465 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259644 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
thu…
During DOM manipulations of the accessibility tree through script, the DOM tree can become out of sync with the accessibility tree, leading to memory corruption and a potentially exploitable crash. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-5464 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259645 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
thu…
A use-after-free vulnerability in frame selection triggered by a combination of malicious script content and key presses by a user. This results in a potentially exploitable crash. This vulnerability… CWE-416
 Use After Free
CVE-2017-5460 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259646 6.1 MEDIUM
Network
mozilla firefox When a "javascript:" URL is drag and dropped by a user into the addressbar, the URL will be processed and executed. This allows for users to be socially engineered to execute an XSS attack on themsel… CWE-79
Cross-site Scripting
CVE-2017-5458 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259647 9.8 CRITICAL
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
firefox_esr
A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system. T… CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2017-5456 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259648 7.5 HIGH
Network
redhat
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
firefox_esr
The internal feed reader APIs that crossed the sandbox barrier allowed for a sandbox escape and escalation of privilege if combined with another vulnerability that resulted in remote code execution i… NVD-CWE-noinfo
CVE-2017-5455 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259649 4.3 MEDIUM
Network
mozilla firefox A mechanism to inject static HTML into the RSS reader preview page due to a failure to escape characters sent as URL parameters for a feed's "TITLE" element. This vulnerability allows for spoofing bu… CWE-20
 Improper Input Validation 
CVE-2017-5453 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm
259650 4.3 MEDIUM
Network
mozilla firefox Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack … CWE-20
 Improper Input Validation 
CVE-2017-5452 2024-11-21 12:27 2018-06-12 Show GitHub Exploit DB Packet Storm