Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260921 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1419 2010-06-29 16:59 2010-06-10 Show GitHub Exploit DB Packet Storm
260922 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1412 2010-06-25 18:51 2010-06-10 Show GitHub Exploit DB Packet Storm
260923 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1749 2010-06-24 15:38 2010-06-10 Show GitHub Exploit DB Packet Storm
260924 7.8 危険 日立 - JP1/ServerConductor/Deployment Manager における不正にシャットダウンまたはリブートを実行する脆弱性 CWE-noinfo
情報不足
- 2010-06-22 17:28 2010-06-4 Show GitHub Exploit DB Packet Storm
260925 6.8 警告 pon software - Explzh におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-2434 2010-06-22 14:01 2010-06-22 Show GitHub Exploit DB Packet Storm
260926 4.3 警告 アップル - Apple Safari の WebKit における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2010-1388 2010-06-21 16:56 2010-06-10 Show GitHub Exploit DB Packet Storm
260927 9.3 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1750 2010-06-18 18:21 2010-06-10 Show GitHub Exploit DB Packet Storm
260928 9.3 危険 アップル - Apple Safari における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1385 2010-06-18 18:20 2010-06-10 Show GitHub Exploit DB Packet Storm
260929 9.3 危険 OpenOffice.org Project
レッドハット
- OpenOffice.org における任意の Python コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-0395 2010-06-17 18:34 2010-06-10 Show GitHub Exploit DB Packet Storm
260930 - - Accoria Networks - Accoria Rock Web Server に複数の脆弱性 - - 2010-06-17 18:33 2010-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252451 8.8 HIGH
Network
mozilla
canonical
firefox
ubuntu_linux
Memory safety bugs present in Firefox 61. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. T… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-12375 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252452 4.3 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Plaintext of decrypted emails can leak through by user submitting an embedded form by pressing enter key within a text input field. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12374 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252453 9.1 CRITICAL
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack pointer being off by 8 bytes after a bailout. This leaks a memory addr… CWE-20
 Improper Input Validation 
CVE-2018-12387 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252454 8.1 HIGH
Network
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process whe… CWE-704
 Incorrect Type Conversion or Cast
CVE-2018-12386 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252455 7.0 HIGH
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination w… CWE-20
 Improper Input Validation 
CVE-2018-12385 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252456 5.5 MEDIUM
Local
redhat
debian
canonical
mozilla
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
debian_linux
ubu…
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not de… CWE-522
 Insufficiently Protected Credentials
CVE-2018-12383 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252457 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
dDecrypted S/MIME parts hidden with CSS or the plaintext HTML tag can leak plaintext when included in a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12373 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252458 6.5 MEDIUM
Network
mozilla
redhat
debian
canonical
thunderbird
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
debian_linux
ubuntu_linux
Decrypted S/MIME parts, when included in HTML crafted for an attack, can leak plaintext when included in a a HTML reply/forward. This vulnerability affects Thunderbird < 52.9. CWE-200
Information Exposure
CVE-2018-12372 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252459 8.8 HIGH
Network
canonical
mozilla
ubuntu_linux
firefox
In Reader View SameSite cookie protections are not checked on exiting. This allows for a payload to be triggered when Reader View is exited if loaded by a malicious site while Reader mode is active, … CWE-352
 Origin Validation Error
CVE-2018-12370 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm
252460 9.8 CRITICAL
Network
mozilla
canonical
firefox
firefox_esr
ubuntu_linux
WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects… CWE-863
 Incorrect Authorization
CVE-2018-12369 2024-11-21 12:45 2018-10-18 Show GitHub Exploit DB Packet Storm