Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 3, 2026, 6:08 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255451 | 4.6 | 警告 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の do_gfs2_set_flags 関数におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-1641 | 2011-03-3 13:41 | 2010-06-1 | Show | GitHub Exploit DB Packet Storm |
| 255452 | 4.9 | 警告 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の gfs2 におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-1436 | 2011-03-3 13:39 | 2010-05-21 | Show | GitHub Exploit DB Packet Storm |
| 255453 | 4.9 | 警告 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の Transparent Inter-Process Communication 機能におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-1187 | 2011-03-3 13:38 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 255454 | 5.4 | 警告 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の fs/nfs/pagelist.c における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-1088 | 2011-03-3 13:37 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 255455 | 7.8 | 危険 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の nfs_wait_on_request 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-1087 | 2011-03-3 13:36 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 255456 | 2.1 | 注意 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の wake_futex_pi 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-0622 | 2011-03-3 13:35 | 2010-02-15 | Show | GitHub Exploit DB Packet Storm |
| 255457 | 1.9 | 注意 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の find_keyring_by_name 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-362
競合状態 |
CVE-2010-1437 | 2011-03-3 13:34 | 2010-05-7 | Show | GitHub Exploit DB Packet Storm |
| 255458 | 2.1 | 注意 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の ebtables モジュールにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0007 | 2011-03-3 13:33 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 255459 | 5.4 | 警告 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の print_fatal_signal 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0003 | 2011-03-3 13:32 | 2010-01-26 | Show | GitHub Exploit DB Packet Storm |
| 255460 | 7.8 | 危険 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux Kernel の The ip6_dst_lookup_tail 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-0437 | 2011-03-3 13:31 | 2010-03-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 3, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246401 | 4.3 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12374 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246402 | 9.1 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory addr… |
CWE-20
Improper Input Validation |
CVE-2018-12387 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246403 | 8.1 |
HIGH
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process whe… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2018-12386 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246404 | 7.0 |
HIGH
Local |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination w… |
CWE-20
Improper Input Validation |
CVE-2018-12385 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246405 | 5.5 |
MEDIUM
Local |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… |
CWE-522
Insufficiently Protected Credentials |
CVE-2018-12383 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246406 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12373 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246407 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12372 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246408 | 8.8 |
HIGH
Network |
canonical mozilla |
ubuntu_linux firefox |
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … |
CWE-352
Origin Validation Error |
CVE-2018-12370 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246409 | 9.8 |
CRITICAL
Network |
mozilla canonical |
firefox firefox_esr ubuntu_linux |
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… |
CWE-863
Incorrect Authorization |
CVE-2018-12369 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 246410 | 7.8 |
HIGH
Local |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux fir… |
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running t… |
CWE-787
Out-of-bounds Write |
CVE-2018-12379 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |