Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 29, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253141 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の kernel における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2514 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 253142 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-2513 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 253143 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の kernel における権限を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-1127 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 253144 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2523 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 253145 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2512 | 2010-01-4 15:23 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 253146 | 10 | 危険 | アップル VMware サン・マイクロシステムズ |
- | Sun Java SE の Provider クラスにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2722 | 2010-01-4 14:56 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 253147 | 10 | 危険 | アップル VMware サン・マイクロシステムズ |
- | Sun Java SE の Provider クラスにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2723 | 2010-01-4 14:55 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 29, 2026, 4:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 280831 | - | symantec | encryption_management_server | The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 3.3.2 allows remote authenticated users to read the stored outbound e-mail messages of ar… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2014-1643 | 2024-11-21 11:04 | 2014-02-7 | Show | GitHub Exploit DB Packet Storm | |
| 280832 | - | citrix |
xenmobile_device_manager xenmobile_device_manager_mdm |
Unspecified vulnerability in Citrix XenMobile Device Manager server (formerly Zenprise Device Manager server) 8.5, 8.6, and MDM 8.0.1 allows remote attackers to obtain sensitive information via unkno… |
NVD-CWE-noinfo
|
CVE-2014-1663 | 2024-11-21 11:04 | 2014-02-7 | Show | GitHub Exploit DB Packet Storm | |
| 280833 | - |
mozilla oracle fedoraproject suse opensuse debian canonical |
network_security_services seamonkey firefox firefox_esr thunderbird enterprise_manager_ops_center vm_server fedora linux_enterprise_desktop linux_enterprise_server opens… |
Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24, and other products, does n… |
CWE-326
Inadequate Encryption Strength |
CVE-2014-1491 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280834 | - |
mozilla oracle fedoraproject suse opensuse debian canonical |
network_security_services seamonkey firefox firefox_esr thunderbird enterprise_manager_ops_center vm_server fedora linux_enterprise_desktop linux_enterprise_server opens… |
Race condition in libssl in Mozilla Network Security Services (NSS) before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24… |
CWE-362
Race Condition |
CVE-2014-1490 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280835 | - |
oracle suse mozilla opensuse_project opensuse canonical |
solaris linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit firefox opensuse ubuntu_linux |
Mozilla Firefox before 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote attackers to cause a denial of service (session restore… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2014-1489 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280836 | - |
mozilla canonical oracle suse opensuse |
seamonkey firefox ubuntu_linux solaris linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit |
The Web workers implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving termination of a worker process that ha… |
NVD-CWE-noinfo
|
CVE-2014-1488 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280837 | - |
mozilla oracle canonical suse opensuse |
seamonkey firefox solaris ubuntu_linux linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit |
The Content Security Policy (CSP) implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 operates on XSLT stylesheets according to style-src directives instead of script-src directiv… |
NVD-CWE-noinfo
|
CVE-2014-1485 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280838 | - |
suse mozilla opensuse_project opensuse oracle |
linux_enterprise_desktop linux_enterprise_server linux_enterprise_software_development_kit firefox opensuse solaris |
Mozilla Firefox before 27.0 on Android 4.2 and earlier creates system-log entries containing profile paths, which allows attackers to obtain sensitive information via a crafted application. |
CWE-200
Information Exposure |
CVE-2014-1484 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280839 | - |
oracle canonical mozilla suse opensuse |
solaris ubuntu_linux seamonkey firefox linux_enterprise_desktop linux_enterprise_server opensuse suse_linux_enterprise_software_development_kit |
Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote attackers to bypass the Same Origin Policy and obtain sensitive information by using an IFRAME element in conjunction with certain t… |
CWE-1021
Improper Restriction of Rendered UI Layers or Frames |
CVE-2014-1483 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm | |
| 280840 | - |
suse opensuse oracle canonical mozilla |
linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_software_development_kit solaris ubuntu_linux seamonkey firefox |
The file-download implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 does not properly restrict the timing of button selections, which allows remote attackers to conduct clickjac… |
CWE-1021
Improper Restriction of Rendered UI Layers or Frames |
CVE-2014-1480 | 2024-11-21 11:04 | 2014-02-6 | Show | GitHub Exploit DB Packet Storm |