Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 29, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253021 | 10 | 危険 | アドビシステムズ レッドハット |
- | Adobe Reader および Acrobat の 3D 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3954 | 2010-02-10 13:38 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 253022 | 6.8 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の Trusted Extensions における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0310 | 2010-02-10 13:38 | 2010-01-11 | Show | GitHub Exploit DB Packet Storm |
| 253023 | 7.1 | 危険 | アップル アドビシステムズ |
- | Windows 上で稼動する Adobe Flash Player および Adobe AIR の Flash Player の ActiveX コントロールにおけるローカルファイルのファイル名を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-3951 | 2010-02-10 13:36 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253024 | 9.3 | 危険 | アップル アドビシステムズ サン・マイクロシステムズ レッドハット |
- | Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3800 | 2010-02-10 13:36 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253025 | 9.3 | 危険 | アップル アドビシステムズ サン・マイクロシステムズ レッドハット |
- | Adobe Flash Player および Adobe AIR の Verifier::parseExceptionHandlers 関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-3799 | 2010-02-10 13:36 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253026 | 9.3 | 危険 | アップル アドビシステムズ サン・マイクロシステムズ レッドハット |
- | Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3798 | 2010-02-10 13:35 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253027 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows XP で提供される Adobe Flash Player 6 における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2010-0378 | 2010-02-9 13:56 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 253028 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Embedded OpenType フォントエンジンにおける任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-0018 | 2010-02-9 13:55 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 253029 | 9.3 | 危険 | サン・マイクロシステムズ アドビシステムズ |
- | Adobe Acrobat におけるファイル拡張子の制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3461 | 2010-02-9 13:55 | 2009-10-13 | Show | GitHub Exploit DB Packet Storm |
| 253030 | 9.3 | 危険 | サン・マイクロシステムズ アドビシステムズ |
- | Adobe Acrobat における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3460 | 2010-02-9 13:55 | 2009-10-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 29, 2026, 4:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 271491 | - | microsoft |
windows_8 windows_8.1 windows_server_2008 windows_server_2012 |
Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly initialize guest OS system data structures, which allows guest O… |
CWE-254
7PK - Security Features |
CVE-2015-2362 | 2024-11-21 11:27 | 2015-07-15 | Show | GitHub Exploit DB Packet Storm | |
| 271492 | - | microsoft |
windows_8.1 windows_server_2012 |
Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS or cause… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2361 | 2024-11-21 11:27 | 2015-07-15 | Show | GitHub Exploit DB Packet Storm | |
| 271493 | - |
mozilla oracle novell |
firefox_esr firefox solaris suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 enables excessive privileges for internal Workers, which might allow remote attackers to execute arbitrary … |
CWE-17
Code |
CVE-2015-2743 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271494 | - |
oracle mozilla |
solaris firefox |
Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-… |
CWE-200
Information Exposure |
CVE-2015-2742 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271495 | - |
mozilla oracle |
firefox solaris firefox_esr |
Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 do not enforce key pinning upon encountering an X.509 certificate problem that generates a user dialog, which al… |
CWE-310
Cryptographic Issues |
CVE-2015-2741 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271496 | - |
mozilla canonical novell debian oracle |
thunderbird firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remot… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2740 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271497 | - |
mozilla canonical novell debian oracle |
firefox ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit debian_linux firefox_esr solaris thunderbird |
The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2739 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271498 | - |
canonical suse debian mozilla oracle |
ubuntu_linux linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux firefox firefox_esr thunderbi… |
The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1… |
CWE-17
Code |
CVE-2015-2738 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 271499 | - |
mozilla canonical oracle suse debian |
firefox_esr firefox ubuntu_linux solaris linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server debian_linux
The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from …
|
CWE-17
|
Code
CVE-2015-2737
|
2024-11-21 11:27 |
2015-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
| |
| 271500 | - |
mozilla oracle canonical novell debian |
firefox thunderbird firefox_esr solaris ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which all… |
CWE-17
Code |
CVE-2015-2736 | 2024-11-21 11:27 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm |