Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260651 7.8 危険 日立 - Cosminexus 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
- 2010-08-26 16:55 2010-07-30 Show GitHub Exploit DB Packet Storm
260652 4.3 警告 サイバートラスト株式会社
レッドハット
- Apache Tomcat のサンプル用 calendar アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-2696 2010-08-25 17:05 2010-08-2 Show GitHub Exploit DB Packet Storm
260653 4.3 警告 インターネットイニシアティブ - SEIL/X シリーズおよび SEIL/B1 における IPv6 Unicast RPF 機能に関する脆弱性 CWE-Other
その他
CVE-2010-2363 2010-08-25 12:01 2010-08-25 Show GitHub Exploit DB Packet Storm
260654 4.6 警告 レッドハット - LVM2 のクラスタ論理ボリュームマネージャデーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証
CVE-2010-2526 2010-08-24 18:42 2010-07-28 Show GitHub Exploit DB Packet Storm
260655 9.3 危険 シマンテック
IBM
- Autonomy KeyView の WordPerfect 5.x reader (wosr.dll) におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-0135 2010-08-24 18:42 2010-08-4 Show GitHub Exploit DB Packet Storm
260656 9.3 危険 シマンテック
IBM
- Autonomy KeyView の library におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-0126 2010-08-24 18:41 2010-08-4 Show GitHub Exploit DB Packet Storm
260657 9.3 危険 シマンテック
IBM
- Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-1524 2010-08-24 18:41 2010-08-4 Show GitHub Exploit DB Packet Storm
260658 9.3 危険 シマンテック
IBM
- Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet における任意のコードを実行される脆弱性 CWE-189
数値処理の問題
CVE-2010-1525 2010-08-24 18:41 2010-08-4 Show GitHub Exploit DB Packet Storm
260659 9.3 危険 シマンテック
IBM
- Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-0133 2010-08-24 18:40 2010-08-4 Show GitHub Exploit DB Packet Storm
260660 9.3 危険 シマンテック
IBM
- Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-0131 2010-08-24 18:40 2010-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252461 7.8 HIGH
Local
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
fir…
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered, leading to a potentially exploitable crash. This requires running t… CWE-787
 Out-of-bounds Write
CVE-2018-12379 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252462 9.8 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
enterprise_linux_server_tus
debian_linux
ubu…
A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providing payload values to be stored. This results in a potentially exploita… CWE-416
 Use After Free
CVE-2018-12378 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252463 9.8 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the timer is deleted while still in use. This results in a potentially exp… CWE-416
 Use After Free
CVE-2018-12377 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252464 9.8 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-12376 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252465 8.1 HIGH
Network
mozilla firefox
firefox_esr
thunderbird
Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the w… NVD-CWE-noinfo
CVE-2018-12368 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252466 4.3 MEDIUM
Network
debian
canonical
mozilla
debian_linux
ubuntu_linux
firefox
thunderbird
firefox_esr
In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTimi… CWE-20
 Improper Input Validation 
CVE-2018-12367 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252467 8.8 HIGH
Network
mozilla
debian
canonical
firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
An integer overflow can occur in the SwizzleData code while calculating buffer sizes. The overflowed value is used for subsequent graphics computations when their inputs are not sanitized which resul… CWE-190
 Integer Overflow or Wraparound
CVE-2018-12361 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252468 4.3 MEDIUM
Network
mozilla
canonical
firefox
ubuntu_linux
Service workers can use redirection to avoid the tainting of cross-origin resources in some instances, allowing a malicious site to read responses which are supposed to be opaque. This vulnerability … CWE-200
Information Exposure
CVE-2018-12358 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252469 6.5 MEDIUM
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This could leak private data into the output. This vulnerability af… CWE-125
Out-of-bounds Read
CVE-2018-12366 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252470 6.5 MEDIUM
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without user consent or interaction. This could result in exposure of private l… CWE-200
Information Exposure
CVE-2018-12365 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm