Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257671 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257672 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257673 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257674 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257675 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
257676 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
257677 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
257678 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
257679 4.4 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1337 2010-01-21 11:23 2009-04-22 Show GitHub Exploit DB Packet Storm
257680 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5300 2010-01-21 11:22 2008-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246551 6.1 MEDIUM
Network 		myadrenalin adrenalin A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Adrenalin 5.4 HRMS Software. The user supplied input containing JavaScript is echoed back in JavaScript code in an HTML response… CWE-79
Cross-site Scripting 		CVE-2018-12652 2024-11-21 12:45 2019-03-26 Show GitHub Exploit DB Packet Storm
246552 6.1 MEDIUM
Network 		bose soundtouch An issue was discovered in the Bose Soundtouch app 18.1.4 for iOS. There is no frontend input validation of the device name. A malicious device name can execute JavaScript on the registered Bose User… CWE-79
Cross-site Scripting 		CVE-2018-12638 2024-11-21 12:45 2019-03-22 Show GitHub Exploit DB Packet Storm
246553 7.8 HIGH
Local 		avast free_antivirus Avast Free Antivirus prior to 19.1.2360 stores user credentials in memory upon login, which allows local users to obtain sensitive information by dumping AvastUI.exe application memory and parsing th… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2018-12572 2024-11-21 12:45 2019-03-22 Show GitHub Exploit DB Packet Storm
246554 9.8 CRITICAL
Network 		mozilla
canonical 		firefox
ubuntu_linux 		A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially explo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12407 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246555 8.8 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12406 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246556 5.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12403 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246557 9.8 CRITICAL
Network 		mozilla
debian
canonical
redhat 		firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri… 		Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enoug… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12405 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246558 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For exampl… CWE-346
 Origin Validation Error 		CVE-2018-12402 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246559 7.5 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnera… CWE-20
 Improper Input Validation  		CVE-2018-12401 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
246560 5.3 MEDIUM
Network 		mozilla firefox In private browsing mode on Firefox for Android, favicons are cached in the cache/icons folder as they are in non-private mode. This allows information leakage of sites visited during private browsin… CWE-200
Information Exposure 		CVE-2018-12400 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm