Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253561 | 4.3 | 警告 | サイバートラスト株式会社 LibTIFF レッドハット |
- | LibTIFF の TIFFRGBAImageGet 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2010-2483 | 2010-07-28 19:31 | 2010-07-6 | Show | GitHub Exploit DB Packet Storm |
| 253562 | 4.3 | 警告 | サイバートラスト株式会社 LibTIFF レッドハット |
- | LibTIFF の TIFFExtractData マクロにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2010-2481 | 2010-07-28 19:31 | 2010-07-6 | Show | GitHub Exploit DB Packet Storm |
| 253563 | 5 | 警告 | レッドハット | - | iSNS 実装におけるバッファーオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-2221 | 2010-07-28 19:30 | 2010-07-8 | Show | GitHub Exploit DB Packet Storm |
| 253564 | 7.5 | 危険 | シスコシステムズ | - | Cisco Content Services Switch における HTTP Request Smuggling 攻撃の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-1576 | 2010-07-27 17:29 | 2010-07-2 | Show | GitHub Exploit DB Packet Storm |
| 253565 | 7.5 | 危険 | シスコシステムズ | - | Cisco Content Services Switch における認証を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-1575 | 2010-07-27 17:28 | 2010-07-2 | Show | GitHub Exploit DB Packet Storm |
| 253566 | 6.8 | 警告 | サイバートラスト株式会社 The Perl Foundation レッドハット |
- | Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-4829 | 2010-07-26 18:29 | 2007-11-2 | Show | GitHub Exploit DB Packet Storm |
| 253567 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows Help and Support Center に脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2010-1885 | 2010-07-23 18:55 | 2010-06-10 | Show | GitHub Exploit DB Packet Storm |
| 253568 | 4.9 | 警告 | マイクロソフト | - | Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性 |
CWE-DesignError
|
CVE-2009-3678 | 2010-07-23 18:55 | 2010-05-14 | Show | GitHub Exploit DB Packet Storm |
| 253569 | 9.3 | 危険 | サン・マイクロシステムズ レッドハット リアルネットワークス |
- | Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4247 | 2010-07-23 18:55 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 253570 | 10 | 危険 | サイバートラスト株式会社 Apache Software Foundation |
- | Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2007-4548 | 2010-07-22 20:51 | 2007-08-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 282501 | - |
fedoraproject mozilla oracle |
fedora firefox solaris |
Mozilla Firefox before 29.0 on Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses DOM events to prevent the reemergence of the actual address bar after scr… |
NVD-CWE-noinfo
|
CVE-2014-1527 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 282502 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is vis… |
CWE-269
Improper Privilege Management |
CVE-2014-1526 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 282503 | - |
mozilla canonical opensuse fedoraproject |
firefox seamonkey ubuntu_linux opensuse fedora |
The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 does not properly perform garbage collection for Text Track Manager variables, which allows remot… |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2014-1525 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 282504 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
Use-after-free vulnerability in the nsGenericHTMLElement::GetWidthHeightForImage function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2… |
CWE-416
Use After Free |
CVE-2014-1531 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 282505 | 6.1 |
MEDIUM
Network |
mozilla fedoraproject canonical debian redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
The docshell implementation in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to trigger the loading of a URL wi… |
CWE-79
Cross-site Scripting |
CVE-2014-1530 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 282506 | 8.8 |
HIGH
Network |
mozilla canonical debian redhat fedoraproject opensuse suse |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to bypass intended source-component r… |
CWE-269
Improper Privilege Management |
CVE-2014-1529 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 282507 | 9.8 |
CRITICAL
Network |
mozilla canonical debian redhat opensuse suse fedoraproject |
thunderbird firefox firefox_esr seamonkey ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_linux_server… |
The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 does not properly check whether obj… |
CWE-120
Classic Buffer Overflow |
CVE-2014-1524 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 282508 | 6.5 |
MEDIUM
Network |
mozilla fedoraproject debian canonical redhat opensuse suse |
thunderbird firefox firefox_esr seamonkey fedora debian_linux ubuntu_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_workstation enterprise_li… |
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2014-1523 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |
| 282509 | - |
fedoraproject canonical opensuse mozilla |
fedora ubuntu_linux opensuse firefox seamonkey |
The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the Web Audio subsystem in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows remote attackers to execute arbitrary code or… |
CWE-125
Out-of-bounds Read |
CVE-2014-1522 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 282510 | - |
mozilla fedoraproject |
firefox firefox_esr fedora |
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan … |
CWE-269
Improper Privilege Management |
CVE-2014-1520 | 2024-11-21 11:04 | 2014-04-30 | Show | GitHub Exploit DB Packet Storm |