Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257031 | 9 | 危険 | マイクロソフト | - | Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-2509 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257032 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2009-2508 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257033 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3675 | 2010-01-22 10:27 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257034 | 9.3 | 危険 | マイクロソフト | - | Microsoft Project における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0102 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257035 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer におけるメモリ破損の脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3673 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257036 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer におけるメモリ破損の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3671 | 2010-01-22 10:26 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257037 | 10 | 危険 | マイクロソフト | - | Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 |
CWE-255 CWE-94 |
CVE-2009-3677 | 2010-01-22 10:24 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257038 | 10 | 危険 | マイクロソフト | - | Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-2505 | 2010-01-22 10:24 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257039 | 6.9 | 警告 | acpid | - | acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4235 | 2010-01-21 11:44 | 2009-12-7 | Show | GitHub Exploit DB Packet Storm |
| 257040 | 6.9 | 警告 | サイバートラスト株式会社 レッドハット acpid |
- | acpid のレッドハットパッチにおける権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4033 | 2010-01-21 11:43 | 2009-12-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249551 | 9.8 |
CRITICAL
Network |
mozilla debian |
firefox thunderbird firefox_esr debian_linux |
A use-after-free vulnerability in IndexedDB when one of its objects is destroyed in memory while a method on it is still being executed. This results in a potentially exploitable crash. This vulnerab… |
CWE-416
Use After Free |
CVE-2017-7757 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249552 | 9.8 |
CRITICAL
Network |
mozilla debian |
firefox thunderbird firefox_esr debian_linux |
A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests (XHR). This could result in a potentially exploitable crash. This vulnerability affects Firef… |
CWE-416
Use After Free |
CVE-2017-7756 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249553 | 7.8 |
HIGH
Local |
mozilla |
firefox firefox_esr thunderbird |
The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. This allows privileged execution if the installer is run with el… |
CWE-426
Untrusted Search Path |
CVE-2017-7755 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249554 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.
|
CWE-125
|
Out-of-bounds Read
CVE-2017-7754
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 249555 | 9.1 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefo… |
CWE-125
Out-of-bounds Read |
CVE-2017-7753 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249556 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with content viewer listeners that results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2. |
CWE-416
Use After Free |
CVE-2017-7751 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249557 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability when using an incorrect URL during the reloading of a docshell. This results in a potentially exploitable crash. This vulnerability affects Firefox < 54, Firefox ESR < … |
CWE-416
Use After Free |
CVE-2017-7749 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249558 | 8.8 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how events are handled. This results in a potentially exploitable crash bu… |
CWE-416
Use After Free |
CVE-2017-7752 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249559 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability during video control operations when a "<track>" element holds a reference to an older window if that window has been replaced in the DOM. This results in a potentially… |
CWE-416
Use After Free |
CVE-2017-7750 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249560 | 9.8 |
CRITICAL
Network |
abb | ip_gateway_firmware | In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access. |
CWE-522
Insufficiently Protected Credentials |
CVE-2017-7933 | 2024-11-21 12:32 | 2018-06-7 | Show | GitHub Exploit DB Packet Storm |