Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259571 9.3 危険 アップル
Google
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1782 2011-02-4 14:38 2010-07-30 Show GitHub Exploit DB Packet Storm
259572 4.3 警告 アップル
Google
レッドハット
- Apple Safari および Google Chrome の WebKit における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3259 2011-02-4 14:37 2010-09-7 Show GitHub Exploit DB Packet Storm
259573 9.3 危険 アップル
Google
レッドハット
- Apple Safari および Google Chrome の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-3257 2011-02-4 14:36 2010-09-7 Show GitHub Exploit DB Packet Storm
259574 10 危険 アップル
Google
レッドハット
- Apple Safari および Google Chrome の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-3116 2011-02-4 14:34 2010-08-24 Show GitHub Exploit DB Packet Storm
259575 9.3 危険 アップル
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-1807 2011-02-4 14:33 2010-09-7 Show GitHub Exploit DB Packet Storm
259576 9.3 危険 アップル
レッドハット
- iPhone および iPod touch 上で稼動する Apple iOS の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1815 2011-02-4 14:32 2010-09-8 Show GitHub Exploit DB Packet Storm
259577 9.3 危険 アップル
レッドハット
- iPhone および iPod touch 上で稼動する Apple iOS の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1814 2011-02-4 14:30 2010-09-8 Show GitHub Exploit DB Packet Storm
259578 9.3 危険 アップル
レッドハット
- iPhone および iPod touch 上で稼動する Apple iOS の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1812 2011-02-4 14:29 2010-09-8 Show GitHub Exploit DB Packet Storm
259579 9.3 危険 アップル
Google
レッドハット
- Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1780 2011-02-4 14:28 2010-07-30 Show GitHub Exploit DB Packet Storm
259580 5.8 警告 アップル
レッドハット
- Apple Safari の WebKit における DNS 先読み設定を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3813 2011-02-4 14:26 2010-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252451 8.8 HIGH
Network
mozilla
canonical
firefox
ubuntu_linux
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-12375 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252452 4.3 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12374 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252453 9.1 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory addr… CWE-20
 Improper Input Validation 
CVE-2018-12387 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252454 8.1 HIGH
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process whe… CWE-704
 Incorrect Type Conversion or Cast
CVE-2018-12386 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252455 7.0 HIGH
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination w… CWE-20
 Improper Input Validation 
CVE-2018-12385 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252456 5.5 MEDIUM
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… CWE-522
 Insufficiently Protected Credentials
CVE-2018-12383 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252457 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12373 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252458 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12372 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252459 8.8 HIGH
Network
canonical
mozilla
ubuntu_linux
firefox
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … CWE-352
 Origin Validation Error
CVE-2018-12370 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252460 9.8 CRITICAL
Network
mozilla
canonical
firefox
firefox_esr
ubuntu_linux
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… CWE-863
 Incorrect Authorization
CVE-2018-12369 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm