Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259801	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249761	9.8	CRITICAL Network	mozilla canonical	firefox ubuntu_linux	A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially explo…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-12407	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249762	8.8	HIGH Network	mozilla canonical	firefox ubuntu_linux	Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-12406	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249763	5.3	MEDIUM Network	mozilla canonical	firefox ubuntu_linux	If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63.	NVD-CWE-noinfo	CVE-2018-12403	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249764	9.8	CRITICAL Network	mozilla debian canonical redhat	firefox thunderbird firefox_esr debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterpri…	Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enoug…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-12405	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249765	6.5	MEDIUM Network	mozilla canonical	firefox ubuntu_linux	The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For exampl…	CWE-346 Origin Validation Error	CVE-2018-12402	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249766	7.5	HIGH Network	mozilla canonical	firefox ubuntu_linux	Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnera…	CWE-20 Improper Input Validation	CVE-2018-12401	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249767	5.3	MEDIUM Network	mozilla	firefox	In private browsing mode on Firefox for Android, favicons are cached in the cache/icons folder as they are in non-private mode. This allows information leakage of sites visited during private browsin…	CWE-200 Information Exposure	CVE-2018-12400	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249768	4.3	MEDIUM Network	mozilla canonical	firefox ubuntu_linux	When a new protocol handler is registered, the API accepts a title argument which can be used to mislead users about which domain is registering the new protocol. This may result in the user approvin…	CWE-287 Improper Authentication	CVE-2018-12399	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249769	6.5	MEDIUM Network	mozilla canonical	firefox ubuntu_linux	By using the reflected URL in some special resource URIs, such as chrome:, it is possible to inject stylesheets and bypass Content Security Policy (CSP). This vulnerability affects Firefox < 63.	NVD-CWE-noinfo	CVE-2018-12398	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm

249770	7.1	HIGH Local	mozilla redhat debian canonical	firefox firefox_esr enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_eus debian_linux ubuntu_linux	A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to …	CWE-200 Information Exposure	CVE-2018-12397	2024-11-21 12:45	2019-03-1	Show	GitHub Exploit DB Packet Storm