Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257881 2.1 注意 アップル - Apple iOS のホームスクリーンコンポーネントにおける重要な状態情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3431 2011-10-24 16:47 2011-10-14 Show GitHub Exploit DB Packet Storm
257882 5 警告 アップル - Apple iOS の UIKit アラートコンポーネントにおけるサービス運用妨害 (デバイスハング) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-3432 2011-10-24 16:46 2011-10-14 Show GitHub Exploit DB Packet Storm
257883 4.3 警告 アップル - Apple iOS の WiFi コンポーネントにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3434 2011-10-24 16:46 2011-10-14 Show GitHub Exploit DB Packet Storm
257884 4.3 警告 アップル - Apple iOS および Safari で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3243 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257885 2.1 注意 アップル - Apple iOS のキーボードコンポーネントにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3245 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257886 2.6 注意 アップル - Apple iOS の CalDAV における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3253 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257887 4.3 警告 アップル - Apple iOS のカレンダーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3254 2011-10-24 16:42 2011-10-14 Show GitHub Exploit DB Packet Storm
257888 4.3 警告 アップル - Apple iOS の CFNetwork における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3255 2011-10-24 16:33 2011-10-14 Show GitHub Exploit DB Packet Storm
257889 2.1 注意 アップル - Apple iOS の Data Access コンポーネントにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3257 2011-10-24 16:32 2011-10-14 Show GitHub Exploit DB Packet Storm
257890 6.8 警告 アップル - Apple iOS の OfficeImport におけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション
CVE-2011-3260 2011-10-24 16:30 2011-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270981 5.9 MEDIUM
Network
mozilla firefox
firefox_esr
Add-on updates failed to verify that the add-on ID inside the signed package matched the ID of the add-on being updated. An attacker who could perform a man-in-the-middle attack on the user's connect… CWE-295
Improper Certificate Validation 
CVE-2016-9064 2024-11-21 12:00 2018-06-12 Show GitHub Exploit DB Packet Storm
270982 9.8 CRITICAL
Network
mozilla
debian
python
firefox
debian_linux
python
An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50. CWE-190
 Integer Overflow or Wraparound
CVE-2016-9063 2024-11-21 12:00 2018-06-12 Show GitHub Exploit DB Packet Storm
270983 3.3 LOW
Local
mozilla firefox Private browsing mode leaves metadata information, such as URLs, for sites visited in "browser.db" and "browser.db-wal" files within the Firefox profile after the mode is exited. Note: This issue onl… CWE-200
Information Exposure
CVE-2016-9062 2024-11-21 12:00 2018-06-12 Show GitHub Exploit DB Packet Storm
270984 7.5 HIGH
Network
mozilla firefox A previously installed malicious Android application which defines a specific signature-level permissions used by Firefox can access API keys meant for Firefox only. Note: This issue only affects Fir… CWE-275
 Permission Issues
CVE-2016-9061 2024-11-21 12:00 2018-06-12 Show GitHub Exploit DB Packet Storm
270985 5.9 MEDIUM
Network
ntp
freebsd
hpe
siemens
ntp
freebsd
hpux-ntp
simatic_net_cp_443-1_opc_ua_firmware
An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected… CWE-20
 Improper Input Validation 
CVE-2016-9042 2024-11-21 12:00 2018-06-5 Show GitHub Exploit DB Packet Storm
270986 10.0 CRITICAL
Network
redlion sixnet-managed_industrial_switches_firmware
stride-managed_ethernet_switches_firmware
A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running firmware Version 5.0.196 and Stride-Managed Ethernet Switches running firmw… CWE-798
 Use of Hard-coded Credentials
CVE-2016-9335 2024-11-21 12:00 2018-05-9 Show GitHub Exploit DB Packet Storm
270987 7.8 HIGH
Local
corel coreldraw An out of bound write vulnerability exists in the EMF parsing functionality of CorelDRAW X8 (CdrGfx - Corel Graphics Engine (64-Bit) - 18.1.0.661). A specially crafted EMF file can cause a vulnerabil… CWE-787
 Out-of-bounds Write
CVE-2016-9043 2024-11-21 12:00 2018-04-25 Show GitHub Exploit DB Packet Storm
270988 7.8 HIGH
Local
sophos invincea-x An exploitable double fetch vulnerability exists in the SboxDrv.sys driver functionality of Invincea-X 6.1.3-24058. A specially crafted input buffer and race condition can result in kernel memory cor… CWE-362
Race Condition
CVE-2016-9038 2024-11-21 12:00 2018-04-25 Show GitHub Exploit DB Packet Storm
270989 7.8 HIGH
Local
symantec endpoint_protection Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of for… CWE-20
 Improper Input Validation 
CVE-2016-9094 2024-11-21 12:00 2018-04-17 Show GitHub Exploit DB Packet Storm
270990 7.0 HIGH
Local
symantec endpoint_protection A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and earlier fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this i… CWE-20
 Improper Input Validation 
CVE-2016-9093 2024-11-21 12:00 2018-04-17 Show GitHub Exploit DB Packet Storm