Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 13, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255351 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3135 | 2010-01-6 14:44 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255352 | 5 | 警告 | トレンドマイクロ 日本電気 Apache Software Foundation 富士通 サイバートラスト株式会社 サン・マイクロシステムズ ヒューレット・パッカード レッドハット |
- | Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-0450 | 2010-01-6 14:43 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 255353 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3133 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255354 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3130 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255355 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3134 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255356 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3132 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255357 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3131 | 2010-01-5 16:17 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255358 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3128 | 2010-01-5 16:17 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255359 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3127 | 2010-01-5 16:16 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 255360 | 6.8 | 警告 | アップル サイバートラスト株式会社 サン・マイクロシステムズ ターボリナックス ヒューレット・パッカード OpenSSL Project レッドハット |
- | OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-5135 | 2010-01-5 13:31 | 2007-10-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248911 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arra…
|
CWE-129
|
Improper Validation of Array Index
CVE-2017-5445
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248912 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A buffer overflow vulnerability while parsing "application/http-index-format" format content when the header contains improperly formatted data. This allows for an out-of-bounds read of data from mem…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-5444
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248913 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A use-after-free vulnerability during XSLT processing due to a failure to propagate error conditions during matching while evaluating context, leading to objects being used when they no longer exist.…
|
CWE-416
|
Use After Free
CVE-2017-5440
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248914 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox thu… |
A use-after-free vulnerability during XSLT processing due to poor handling of template parameters. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Fire… |
CWE-416
Use After Free |
CVE-2017-5439 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 248915 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A use-after-free vulnerability during XSLT processing due to the result handler being held by a freed handler during handling. This results in a potentially exploitable crash. This vulnerability affe…
|
CWE-416
|
Use After Free
CVE-2017-5438
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248916 | 8.8 |
HIGH
Network |
debian redhat sil mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus graphite2 t… |
An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. This results in a potentially exploitable crash. This issue was fixed in the Graphite 2 library as… |
CWE-787
Out-of-bounds Write |
CVE-2017-5436 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 248917 | 9.8 |
CRITICAL
Network |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server debian_linux thunderbird firefox firefox_esr |
A use-after-free vulnerability occurs when redirecting focus handling which results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR … |
CWE-416
Use After Free |
CVE-2017-5434 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 248918 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox thu… |
A use-after-free vulnerability occurs during certain text input selection resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR … |
CWE-416
Use After Free |
CVE-2017-5432 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 248919 | 9.8 |
CRITICAL
Network |
redhat mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server firefox_esr thunderbird firefox |
Memory safety bugs were reported in Firefox 52, Firefox ESR 52, and Thunderbird 52. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5430 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 248920 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox thu… |
A use-after-free vulnerability occurs during transaction processing in the editor during design mode interactions. This results in a potentially exploitable crash. This vulnerability affects Thunderb… |
CWE-416
Use After Free |
CVE-2017-5435 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |