Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257951 4 警告 Pidgin
オラクル		 - Pidgin の libpurple 内にある oscar プロトコルプラグインの clientautoresp 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2528 2011-01-4 16:14 2010-07-30 Show GitHub Exploit DB Packet Storm
257952 7.2 危険 VMware - 複数の VMware 製品の VMware-Tools アップデート機能における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4297 2010-12-27 15:40 2010-12-2 Show GitHub Exploit DB Packet Storm
257953 7.2 危険 VMware - 複数の VMware 製品の vmware-mount における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4296 2010-12-27 15:38 2010-12-2 Show GitHub Exploit DB Packet Storm
257954 6.9 警告 VMware - 複数の VMware 製品の vmware-mount における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-4295 2010-12-27 15:36 2010-12-2 Show GitHub Exploit DB Packet Storm
257955 9.3 危険 VMware - 複数の VMware 製品の VMnc メディアコーデック内にあるフレーム復元機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4294 2010-12-27 15:33 2010-12-2 Show GitHub Exploit DB Packet Storm
257956 2.1 注意 アップル - Windows 上で稼働する Apple QuickTime における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0530 2010-12-27 15:07 2010-12-9 Show GitHub Exploit DB Packet Storm
257957 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1508 2010-12-27 15:06 2010-12-9 Show GitHub Exploit DB Packet Storm
257958 9.3 危険 アップル - Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3800 2010-12-27 14:59 2010-12-9 Show GitHub Exploit DB Packet Storm
257959 9.3 危険 マイクロソフト - Microsoft Internet Explorer における無効なフラグ参照に起因する脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3962 2010-12-27 14:36 2010-11-4 Show GitHub Exploit DB Packet Storm
257960 10 危険 CA Technologies - CA PSFormX および CA WebScan ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-20
CWE-noinfo
CVE-2010-2193 2010-12-27 11:49 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249761 9.8 CRITICAL
Network 		mozilla
canonical 		firefox
ubuntu_linux 		A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially explo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12407 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249762 8.8 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12406 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249763 5.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12403 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249764 9.8 CRITICAL
Network 		mozilla
debian
canonical
redhat 		firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri… 		Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enoug… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12405 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249765 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For exampl… CWE-346
 Origin Validation Error 		CVE-2018-12402 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249766 7.5 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnera… CWE-20
 Improper Input Validation  		CVE-2018-12401 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249767 5.3 MEDIUM
Network 		mozilla firefox In private browsing mode on Firefox for Android, favicons are cached in the cache/icons folder as they are in non-private mode. This allows information leakage of sites visited during private browsin… CWE-200
Information Exposure 		CVE-2018-12400 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249768 4.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol. This may result in the user approvin… CWE-287
Improper Authentication 		CVE-2018-12399 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249769 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy (CSP). This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12398 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
249770 7.1 HIGH
Local 		mozilla
redhat
debian
canonical 		firefox
firefox_esr
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
debian_linux
ubuntu_linux 		A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to … CWE-200
Information Exposure 		CVE-2018-12397 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm