Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2021 7.5 重要
Network 		Mozilla Foundation Mozilla Thunderbird
Mozilla Firefox 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-8954 2026-05-21 10:47 2026-05-19 Show GitHub Exploit DB Packet Storm
2022 4.3 警告
Network 		シックス・アパート株式会社 Movable Type Premium (Advanced Edition)
Movable Type
Movable Type Advanced
Movable Type Premium 		Movable Typeにおける権限チェックの欠如の脆弱性 CWE-Other
その他 		CVE-2026-44392 2026-05-20 14:09 2026-05-20 Show GitHub Exploit DB Packet Storm
2023 4.3 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-40416 2026-05-20 13:31 2026-05-12 Show GitHub Exploit DB Packet Storm
2024 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける有効期限後または解放後のリソースの操作に関する脆弱性 CWE-672
有効期限後または解放後のリソースの操作 		CVE-2026-4053 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
2025 6.5 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-4054 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
2026 8.2 重要
Network 		TheCodingMachine Gotenberg TheCodingMachineのGotenbergにおける複数の脆弱性 CWE-184
CWE-73
CVE-2026-40893 2026-05-20 13:31 2026-05-14 Show GitHub Exploit DB Packet Storm
2027 7.8 重要
Local 		George Nachman iTerm2 George NachmanのiTerm2における信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41253 2026-05-20 13:31 2026-04-18 Show GitHub Exploit DB Packet Storm
2028 8.2 重要
Network 		Quantum Nous New API Quantum NousのNew APIにおける複数の脆弱性 CWE-1188
CWE-345
CWE-863
CVE-2026-41432 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
2029 8.8 重要
Network 		anyscale ray anyscaleのrayにおける複数の脆弱性 CWE-502
CWE-94
CVE-2026-41486 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
2030 4.4 警告
Local 		cilium cilium ciliumにおける複数の脆弱性 CWE-200
CWE-312
CWE-312
CVE-2026-41520 2026-05-20 13:31 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311301 - mozilla firefox
thunderbird 		intl/uconv/util/nsUnicodeDecodeHelper.cpp in Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 inserts a U+FFFD sequence into text in certain circumstances involving undefined positions, whic… CWE-20
 Improper Input Validation  		CVE-2010-1210 2024-11-21 10:13 2010-07-31 Show GitHub Exploit DB Packet Storm
311302 - mozilla firefox
seamonkey 		Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary… CWE-399
 Resource Management Errors 		CVE-2010-1209 2024-11-21 10:13 2010-07-31 Show GitHub Exploit DB Packet Storm
311303 8.8 HIGH
Network 		mozilla firefox
seamonkey 		Use-after-free vulnerability in the attribute-cloning functionality in the DOM implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote … CWE-416
 Use After Free 		CVE-2010-1208 2024-11-21 10:13 2010-07-31 Show GitHub Exploit DB Packet Storm
311304 - mozilla firefox
thunderbird 		Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote attackers to obtain sensitive cross-origin information v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1207 2024-11-21 10:13 2010-07-31 Show GitHub Exploit DB Packet Storm
311305 - likewise likewise_open
likewise_cifs 		The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before build 8046, and 6.0 before build 8234, as used in HP StorageWorks X9000 Network Storage Systems and possibly other products, uses "SetPa… CWE-287
Improper Authentication 		CVE-2010-0833 2024-11-21 10:13 2010-07-28 Show GitHub Exploit DB Packet Storm
311306 - microsoft access The Microsoft Access Wizard Controls in ACCWIZ.dll in Microsoft Office Access 2003 SP3 and 2007 SP1 and SP2 do not properly interact with the memory-allocation approach used by Internet Explorer duri… CWE-94
Code Injection 		CVE-2010-0814 2024-11-21 10:13 2010-07-15 Show GitHub Exploit DB Packet Storm
311307 - oracle opensolaris Unspecified vulnerability in Oracle OpenSolaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rdist. NVD-CWE-noinfo
CVE-2010-0916 2024-11-21 10:13 2010-07-14 Show GitHub Exploit DB Packet Storm
311308 - oracle e-business_suite Unspecified vulnerability in the Oracle Advanced Product Catalog component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote authenticated users to affect confidentiality and int… NVD-CWE-noinfo
CVE-2010-0915 2024-11-21 10:13 2010-07-14 Show GitHub Exploit DB Packet Storm
311309 - oracle sun_convergence Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote attackers to affect confidentiality via unknown vectors related to Mail, Calendar, Address Book, and Instant Messaging. NVD-CWE-noinfo
CVE-2010-0914 2024-11-21 10:13 2010-07-14 Show GitHub Exploit DB Packet Storm
311310 - oracle e-business_suite Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vectors. NVD-CWE-noinfo
CVE-2010-0913 2024-11-21 10:13 2010-07-14 Show GitHub Exploit DB Packet Storm