Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257741 | 4.3 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0069 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257742 | 5 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0078 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257743 | 5 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0074 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257744 | 5 | 警告 | オラクル | - | BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0068 | 2010-02-15 19:32 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257745 | 4.3 | 警告 | オラクル | - | Oracle Application Server の J2EE コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0070 | 2010-02-15 19:31 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257746 | 5 | 警告 | オラクル | - | Oracle Application Server の J2EE コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0067 | 2010-02-15 19:31 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257747 | 5 | 警告 | オラクル | - | Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0066 | 2010-02-15 19:31 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257748 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-1385 | 2010-02-15 11:03 | 2009-06-4 | Show | GitHub Exploit DB Packet Storm |
| 257749 | 4.6 | 警告 | サイバートラスト株式会社 Todd C. Miller |
- | sudo の Perl スクリプト実行時における権限昇格の脆弱性 | - | CVE-2005-4158 | 2010-02-15 11:03 | 2005-11-8 | Show | GitHub Exploit DB Packet Storm |
| 257750 | 1 | 注意 | オラクル | - | Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3412 | 2010-02-12 12:22 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 6, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247381 | 5.5 |
MEDIUM
Local |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… |
CWE-522
Insufficiently Protected Credentials |
CVE-2018-12383 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247382 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12373 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247383 | 6.5 |
MEDIUM
Network |
mozilla redhat debian canonical |
thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux ubuntu_linux |
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. |
CWE-200
Information Exposure |
CVE-2018-12372 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247384 | 8.8 |
HIGH
Network |
canonical mozilla |
ubuntu_linux firefox |
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … |
CWE-352
Origin Validation Error |
CVE-2018-12370 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247385 | 9.8 |
CRITICAL
Network |
mozilla canonical |
firefox firefox_esr ubuntu_linux |
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… |
CWE-863
Incorrect Authorization |
CVE-2018-12369 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247386 | 7.8 |
HIGH
Local |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux fir… |
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running t… |
CWE-787
Out-of-bounds Write |
CVE-2018-12379 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247387 | 9.8 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server_tus debian_linux ubu… |
A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploita… |
CWE-416
Use After Free |
CVE-2018-12378 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247388 | 9.8 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exp… |
CWE-416
Use After Free |
CVE-2018-12377 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247389 | 9.8 |
CRITICAL
Network |
redhat debian canonical mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux ubu… |
Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-12376 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |
| 247390 | 8.1 |
HIGH
Network |
mozilla |
firefox firefox_esr thunderbird |
Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the w… |
NVD-CWE-noinfo
|
CVE-2018-12368 | 2024-11-21 12:45 | 2018-10-18 | Show | GitHub Exploit DB Packet Storm |