Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259711 5 警告 アップル
サイバートラスト株式会社
OpenLDAP Foundation
ターボリナックス
VMware
レッドハット
- OpenLDAP の slap_modrdn2mods 関数における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-0211 2011-01-14 14:45 2010-06-30 Show GitHub Exploit DB Packet Storm
259712 6.2 警告 サイバートラスト株式会社
VMware
Todd C. Miller
レッドハット
- sudo における権限昇格の脆弱性 CWE-DesignError
CVE-2010-2956 2011-01-14 14:44 2010-09-7 Show GitHub Exploit DB Packet Storm
259713 - - GNU Project
VMware
サイバートラスト株式会社
レッドハット
- glibc に権限昇格の脆弱性 - CVE-2010-3847 2011-01-14 14:42 2010-10-26 Show GitHub Exploit DB Packet Storm
259714 7.8 危険 マイクロソフト
アドビシステムズ
日本電気
- Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2009-2495 2011-01-14 14:33 2009-07-28 Show GitHub Exploit DB Packet Storm
259715 9.3 危険 サン・マイクロシステムズ
アドビシステムズ
日本電気
マイクロソフト
OpenOffice.org Project
- Microsoft Visual Studio の ATL におけるオブジェクトのインスタンス化処理に関する任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2493 2011-01-14 14:32 2009-07-28 Show GitHub Exploit DB Packet Storm
259716 9.3 危険 マイクロソフト
アドビシステムズ
日本電気
- Microsoft Visual Studio の ATL における未初期化オブジェクト処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-0901 2011-01-14 14:31 2009-07-28 Show GitHub Exploit DB Packet Storm
259717 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3957 2011-01-13 16:22 2010-12-14 Show GitHub Exploit DB Packet Storm
259718 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション
CVE-2010-3956 2011-01-13 16:19 2010-12-14 Show GitHub Exploit DB Packet Storm
259719 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-3346 2011-01-13 16:15 2010-12-14 Show GitHub Exploit DB Packet Storm
259720 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-3345 2011-01-13 16:11 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257781 5.3 MEDIUM
Network
mozilla firefox A content security policy (CSP) "frame-ancestors" directive containing origins with paths allows for comparisons against those paths instead of the origin. This results in a cross-origin information … CWE-200
CWE-346
Information Exposure
 Origin Validation Error
CVE-2017-7808 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257782 7.5 HIGH
Network
mozilla firefox A use-after-free vulnerability can occur when the layer manager is freed too early when rendering specific SVG content, resulting in a potentially exploitable crash. This vulnerability affects Firefo… CWE-416
 Use After Free
CVE-2017-7806 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257783 9.8 CRITICAL
Network
debian
redhat
canonical
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
ubuntu_linux
firefox
firefox…
Memory safety bugs were reported in Firefox 55 and Firefox ESR 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-7810 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257784 9.8 CRITICAL
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to the document. This results in a potentially exploitable crash. This … CWE-416
 Use After Free
CVE-2017-7809 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257785 8.1 HIGH
Network
debian
redhat
mozilla
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
fir…
A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifes… CWE-20
 Improper Input Validation 
CVE-2017-7807 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257786 7.5 HIGH
Network
mozilla
debian
firefox
thunderbird
debian_linux
During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space a… CWE-416
 Use After Free
CVE-2017-7805 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257787 7.5 HIGH
Network
mozilla firefox
firefox_esr
thunderbird
The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location i… CWE-20
 Improper Input Validation 
CVE-2017-7804 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257788 7.5 HIGH
Network
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
debian_linux
thunderbird
firefox
firefox_…
When a page's content security policy (CSP) header contains a "sandbox" directive, other directives are ignored. This results in the incorrect enforcement of CSP. This vulnerability affects Thunderbi… CWE-269
 Improper Privilege Management
CVE-2017-7803 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257789 6.1 MEDIUM
Network
mozilla firefox JavaScript in the "about:webrtc" page is not sanitized properly being assigned to "innerHTML". Data on this page is supplied by WebRTC usage and is not under third-party control, making this difficul… CWE-79
Cross-site Scripting
CVE-2017-7799 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
257790 7.5 HIGH
Network
mozilla firefox Response header name interning does not have same-origin protections and these headers are stored in a global registry. This allows stored header names to be available cross-origin. This vulnerabilit… CWE-346
 Origin Validation Error
CVE-2017-7797 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm