Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255361	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255362	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255363	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255364	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255365	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255366	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255367	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265721	8.8	HIGH Network	sil suse opensuse oracle mozilla	graphite2 linux_enterprise leap opensuse linux firefox	Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attack…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2796	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265722	8.8	HIGH Network	suse opensuse oracle mozilla sil	linux_enterprise leap opensuse linux firefox graphite2	The graphite2::FileFace::get_table_fn function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data …	CWE-19 Data Processing Errors	CVE-2016-2795	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265723	8.8	HIGH Network	mozilla sil suse opensuse oracle	firefox graphite2 linux_enterprise leap opensuse linux	The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a de…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2794	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265724	8.8	HIGH Network	oracle mozilla sil suse opensuse	linux firefox graphite2 linux_enterprise leap opensuse	CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2793	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265725	8.8	HIGH Network	sil mozilla oracle suse opensuse	graphite2 firefox linux linux_enterprise leap opensuse	The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of ser…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2792	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265726	8.8	HIGH Network	suse opensuse mozilla oracle sil	linux_enterprise leap opensuse firefox linux graphite2	The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (bu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2791	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265727	8.8	HIGH Network	suse opensuse mozilla sil oracle	linux_enterprise leap opensuse firefox graphite2 linux	The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data s…	CWE-19 Data Processing Errors	CVE-2016-2790	2024-11-21 11:48	2016-03-14	Show	GitHub Exploit DB Packet Storm

265728	5.9	MEDIUM Network	isc debian canonical	dhcp debian_linux ubuntu_linux	ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertio…	CWE-20 Improper Input Validation	CVE-2016-2774	2024-11-21 11:48	2016-03-10	Show	GitHub Exploit DB Packet Storm

265729	5.3	MEDIUM Network	google	chrome	The Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 49.0.2623.75, does not ignore a URL's path component in the case of a ServiceWorker fetch, which allows remo…	CWE-200 Information Exposure	CVE-2016-2845	2024-11-21 11:48	2016-03-6	Show	GitHub Exploit DB Packet Storm

265730	8.8	HIGH Network	google	chrome	WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to…	CWE-20 Improper Input Validation	CVE-2016-2844	2024-11-21 11:48	2016-03-6	Show	GitHub Exploit DB Packet Storm