Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253091	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253092	9	危険	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2509	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253093	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253094	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253095	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253096	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253097	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253098	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253099	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253100	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280831	-	symantec	encryption_management_server	The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 3.3.2 allows remote authenticated users to read the stored outbound e-mail messages of ar…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1643	2024-11-21 11:04	2014-02-7	Show	GitHub Exploit DB Packet Storm

280832	-	citrix	xenmobile_device_manager xenmobile_device_manager_mdm	Unspecified vulnerability in Citrix XenMobile Device Manager server (formerly Zenprise Device Manager server) 8.5, 8.6, and MDM 8.0.1 allows remote attackers to obtain sensitive information via unkno…	NVD-CWE-noinfo	CVE-2014-1663	2024-11-21 11:04	2014-02-7	Show	GitHub Exploit DB Packet Storm

280833	-	mozilla oracle fedoraproject suse opensuse debian canonical	network_security_services seamonkey firefox firefox_esr thunderbird enterprise_manager_ops_center vm_server fedora linux_enterprise_desktop linux_enterprise_server opens…	Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24, and other products, does n…	CWE-326 Inadequate Encryption Strength	CVE-2014-1491	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280834	-	mozilla oracle fedoraproject suse opensuse debian canonical	network_security_services seamonkey firefox firefox_esr thunderbird enterprise_manager_ops_center vm_server fedora linux_enterprise_desktop linux_enterprise_server opens…	Race condition in libssl in Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24…	CWE-362 Race Condition	CVE-2014-1490	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280835	-	oracle suse mozilla opensuse_project opensuse canonical	solaris linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit firefox opensuse ubuntu_linux	Mozilla Firefox before 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote attackers to cause a denial of service (session restore…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1489	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280836	-	mozilla canonical oracle suse opensuse	seamonkey firefox ubuntu_linux solaris linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit	The Web workers implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving termination of a worker process that ha…	NVD-CWE-noinfo	CVE-2014-1488	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280837	-	mozilla oracle canonical suse opensuse	seamonkey firefox solaris ubuntu_linux linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit	The Content Security Policy (CSP) implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 operates on XSLT stylesheets according to style-src directives instead of script-src directiv…	NVD-CWE-noinfo	CVE-2014-1485	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280838	-	suse mozilla opensuse_project opensuse oracle	linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit firefox opensuse solaris	Mozilla Firefox before 27.0 on Android 4.2 and earlier creates system-log entries containing profile paths, which allows attackers to obtain sensitive information via a crafted application.	CWE-200 Information Exposure	CVE-2014-1484	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280839	-	oracle canonical mozilla suse opensuse	solaris ubuntu_linux seamonkey firefox linux_enterprise_desktop linux_enterprise_server opensuse suse_linux_enterprise_software_development_kit	Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain t…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2014-1483	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm

280840	-	suse opensuse oracle canonical mozilla	linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit solaris ubuntu_linux seamonkey firefox	The file-download implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 does not properly restrict the timing of button selections, which allows remote attackers to conduct clickjac…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2014-1480	2024-11-21 11:04	2014-02-6	Show	GitHub Exploit DB Packet Storm