Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254691 7.6 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3986 2010-01-29 09:54 2009-12-15 Show GitHub Exploit DB Packet Storm
254692 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3985 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
254693 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3984 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
254694 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性 CWE-Other
その他 		CVE-2009-3983 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
254695 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の libtheora における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3389 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
254696 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の liboggplay における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3388 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
254697 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3982 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
254698 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3981 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
254699 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3980 2010-01-28 12:15 2009-12-15 Show GitHub Exploit DB Packet Storm
254700 10 危険 アドビシステムズ - Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3792 2010-01-27 10:02 2009-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273791 - mozilla
opensuse 		firefox
opensuse 		The asm.js implementation in Mozilla Firefox before 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote at… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2712 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273792 - opensuse
mozilla 		opensuse
firefox 		Mozilla Firefox before 38.0 does not recognize a referrer policy delivered by a referrer META element in cases of context-menu navigation and middle-click navigation, which allows remote attackers to… CWE-200
Information Exposure 		CVE-2015-2711 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273793 - mozilla
novell
opensuse 		thunderbird
firefox_esr
firefox
suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit 		Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via cr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2710 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273794 - mozilla
novell
opensuse 		firefox
suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 38.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe… NVD-CWE-noinfo
CVE-2015-2709 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273795 - novell
opensuse
mozilla 		suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit
firefox
thunderbird
firefox_esr 		Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allow remote attackers to cause a denial of servic… NVD-CWE-noinfo
CVE-2015-2708 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273796 - clamav
canonical 		clamav
ubuntu_linux 		ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted xz archive file. CWE-399
 Resource Management Errors 		CVE-2015-2668 2024-11-21 11:27 2015-05-13 Show GitHub Exploit DB Packet Storm
273797 - lenovo system_update Race condition in Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses world-writable permissions for the update files directory, which allows local users to gain privileg… CWE-362
Race Condition 		CVE-2015-2234 2024-11-21 11:27 2015-05-13 Show GitHub Exploit DB Packet Storm
273798 - lenovo system_update Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 does not properly validate CA chains during signature validation, which allows man-in-the-middle attackers to upload and ex… CWE-310
Cryptographic Issues 		CVE-2015-2233 2024-11-21 11:27 2015-05-13 Show GitHub Exploit DB Packet Storm
273799 - canonical
clamav 		ubuntu_linux
clamav 		ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted petite packed file. CWE-399
 Resource Management Errors 		CVE-2015-2222 2024-11-21 11:27 2015-05-13 Show GitHub Exploit DB Packet Storm
273800 - clamav
canonical 		clamav
ubuntu_linux 		ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted y0da cryptor file. CWE-399
 Resource Management Errors 		CVE-2015-2221 2024-11-21 11:27 2015-05-13 Show GitHub Exploit DB Packet Storm