Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 21, 2024, 6:02 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 201371 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-362
競合状態 |
CVE-2010-0489 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 201372 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0267 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 201373 | 10 | 危険 | アップル | - | Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性 |
CWE-DesignError
|
CVE-2010-0055 | 2010-04-16 16:59 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 201374 | 0 | 注意 | アップル | - | Apple Mac OS X の Wiki サーバにおけるコンテンツを公開される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0534 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 201375 | 5 | 警告 | アップル | - | Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0523 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 201376 | 9 | 危険 | アップル | - | Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0522 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 201377 | 5 | 警告 | アップル | - | Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-0521 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 201378 | 4.3 | 警告 | アップル Ruby on Rails project |
- | Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4214 | 2010-04-16 16:58 | 2009-12-7 | Show | GitHub Exploit DB Packet Storm |
| 201379 | 4.3 | 警告 | アップル Ruby on Rails project |
- | Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3009 | 2010-04-16 16:58 | 2009-09-8 | Show | GitHub Exploit DB Packet Storm |
| 201380 | 7.5 | 危険 | アップル Ruby on Rails project |
- | Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-2422 | 2010-04-16 16:57 | 2009-07-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 10, 2024, 8:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 361 | - |
mozilla oracle canonical novell debian |
firefox thunderbird firefox_esr solaris ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit |
The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which all… Update |
CWE-17
Code |
CVE-2015-2736 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 362 | - |
mozilla canonical novell debian oracle |
firefox firefox_esr thunderbird ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris |
nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to … Update |
CWE-17
Code |
CVE-2015-2735 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 363 | - |
suse mozilla canonical debian oracle |
linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop suse_linux_enterprise_server firefox_esr firefox ubuntu_linux debian_linux thunderbi… |
The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D 9 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 r… Update |
CWE-17
Code |
CVE-2015-2734 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 364 | - |
mozilla oracle novell |
firefox solaris firefox_esr suse_linux_enterprise_server suse_linux_enterprise_desktop |
Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbit… Update |
NVD-CWE-Other
|
CVE-2015-2733 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 365 | - |
mozilla oracle |
firefox thunderbird solaris firefox_esr |
Use-after-free vulnerability in the CSPService::ShouldLoad function in the microtask implementation in Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 allows re… Update |
NVD-CWE-Other
|
CVE-2015-2731 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 366 | - |
novell debian mozilla oracle |
suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit network_security_services solaris vm_server |
Mozilla Network Security Services (NSS) before 3.19.1, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and other products, does not properly perform Ellipti… Update |
CWE-310
Cryptographic Issues |
CVE-2015-2730 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 367 | - |
mozilla oracle |
firefox_esr firefox thunderbird solaris |
The AudioParamTimeline::AudioNodeInputValue function in the Web Audio implementation in Mozilla Firefox before 39.0 and Firefox ESR 38.x before 38.1 does not properly calculate an oscillator renderin… Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2729 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 368 | - |
novell mozilla oracle |
suse_linux_enterprise_server suse_linux_enterprise_desktop firefox_esr firefox solaris |
The IndexedDatabaseManager class in the IndexedDB implementation in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 misinterprets an unspecified IDBDatabase field as… Update |
NVD-CWE-Other
|
CVE-2015-2728 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 369 | - |
novell oracle mozilla |
suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris firefox_esr firefox thunderbird |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 allow remote attackers to cause a denial of servic… Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2725 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm | |
| 370 | - |
oracle mozilla canonical novell debian |
solaris firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit thunderbird |
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 allow remote attackers to cau… Update |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-2724 | 2024-10-21 22:55 | 2015-07-6 | Show | GitHub Exploit DB Packet Storm |