Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255681 4.3 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 MMR デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1183 2010-05-26 16:30 2009-04-16 Show GitHub Exploit DB Packet Storm
255682 7.5 危険 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 MMR デコーダにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1182 2010-05-26 16:30 2009-04-16 Show GitHub Exploit DB Packet Storm
255683 5 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1181 2010-05-26 16:29 2009-04-16 Show GitHub Exploit DB Packet Storm
255684 6.8 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 デコーダにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1180 2010-05-26 16:29 2009-04-16 Show GitHub Exploit DB Packet Storm
255685 6.8 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
アップル
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 デコーダにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1179 2010-05-26 16:29 2009-04-16 Show GitHub Exploit DB Packet Storm
255686 6.8 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 デコーダにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0800 2010-05-26 16:29 2009-04-16 Show GitHub Exploit DB Packet Storm
255687 4.3 警告 Glyph & Cog, LLC
freedesktop.org
日本電気
サイバートラスト株式会社
CUPS
レッドハット		 - JBIG2 デコーダにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0799 2010-05-26 16:28 2009-04-16 Show GitHub Exploit DB Packet Storm
255688 6.9 警告 レッドハット - RHEL の Linux kernel 用の特定のレッドハットパッチにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0729 2010-05-25 16:05 2010-03-16 Show GitHub Exploit DB Packet Storm
255689 4 警告 IBM - IBM DB2 の REPEAT 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1560 2010-05-24 18:34 2010-04-27 Show GitHub Exploit DB Packet Storm
255690 4 警告 サン・マイクロシステムズ - Sun Solaris における lx ブランドゾーンに関するサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4774 2010-05-24 18:33 2009-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248171 9.8 CRITICAL
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir… 		A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. This vulne… CWE-416
 Use After Free 		CVE-2017-7800 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248172 8.8 HIGH
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir… 		The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when open… CWE-94
Code Injection 		CVE-2017-7798 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248173 9.8 CRITICAL
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird 		A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash. This vulnerability affect… CWE-416
 Use After Free 		CVE-2017-7793 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248174 9.8 CRITICAL
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird 		A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7792 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248175 7.5 HIGH
Network 		mozilla firefox On Windows systems, if non-null-terminated strings are copied into the crash reporter for some specific registry keys, stack memory data can be copied until a null is found. This can potentially cont… NVD-CWE-noinfo
CVE-2017-7790 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248176 5.3 MEDIUM
Network 		mozilla firefox If a server sends two Strict-Transport-Security (STS) headers for a single connection, they will be rejected as invalid and HTTP Strict Transport Security (HSTS) will not be enabled for the connectio… NVD-CWE-noinfo
CVE-2017-7789 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248177 9.8 CRITICAL
Network 		mozilla firefox When an "iframe" has a "sandbox" attribute and its content is specified using "srcdoc", that content does not inherit the containing page's Content Security Policy (CSP) as it should unless the sandb… CWE-74
Injection 		CVE-2017-7788 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248178 9.8 CRITICAL
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
thu… 		A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.3, Fir… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7786 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248179 5.3 MEDIUM
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird 		On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert fr… CWE-20
 Improper Input Validation  		CVE-2017-7791 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
248180 7.5 HIGH
Network 		debian
redhat
mozilla 		debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
thunderbird 		Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page, leading to information disclosure. Thi… CWE-200
Information Exposure 		CVE-2017-7787 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm