Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228241 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsViewManager::ProcessPendingUpdates 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4217 2012-12-14 17:52 2012-11-20 Show GitHub Exploit DB Packet Storm
228242 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsEditor::FindNextLeafNode 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4213 2012-12-14 16:58 2012-11-20 Show GitHub Exploit DB Packet Storm
228243 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4212 2012-12-14 16:56 2012-11-20 Show GitHub Exploit DB Packet Storm
228244 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の XrayWrapper の実装におけるクローム専用の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4208 2012-12-14 16:50 2012-11-20 Show GitHub Exploit DB Packet Storm
228245 10 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4204 2012-12-14 16:47 2012-11-20 Show GitHub Exploit DB Packet Storm
228246 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトリクエストフォージェリの脆弱性 CWE-DesignError
CVE-2012-4205 2012-12-14 16:40 2012-11-20 Show GitHub Exploit DB Packet Storm
228247 6.8 警告 Mozilla Foundation - Mozilla Firefox の新しいタブページにおける任意のプログラムを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4203 2012-12-14 16:39 2012-11-20 Show GitHub Exploit DB Packet Storm
228248 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5843 2012-12-14 16:33 2012-11-20 Show GitHub Exploit DB Packet Storm
228249 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の HVM 制御操作におけるサービス運用妨害 (物理 CPU の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-6333 2012-12-14 16:23 2012-12-3 Show GitHub Exploit DB Packet Storm
228250 4.7 警告 Xen プロジェクト - Xen の get_page_from_gfn hypercall 関数におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5525 2012-12-14 16:22 2012-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212881 - cisco ios_xe Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted IPv4 UDP packet, aka Bug ID CSCsw95482. CWE-399
 Resource Management Errors 		CVE-2015-6268 2024-11-21 11:34 2015-08-29 Show GitHub Exploit DB Packet Storm
212882 - cisco ios_xe Cisco IOS XE before 2.2.3 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted L2TP packet, aka Bug IDs CSCsw95722 and CSCsw95496. CWE-399
 Resource Management Errors 		CVE-2015-6267 2024-11-21 11:34 2015-08-29 Show GitHub Exploit DB Packet Storm
212883 - cisco identity_services_engine_software The guest portal in Cisco Identity Services Engine (ISE) 3300 1.2(0.899) does not restrict access to uploaded HTML documents, which allows remote attackers to obtain sensitive information from custom… CWE-287
Improper Authentication 		CVE-2015-6266 2024-11-21 11:34 2015-08-29 Show GitHub Exploit DB Packet Storm
212884 - cisco application_control_engine_4700 The CLI in Cisco Application Control Engine (ACE) 4700 A5 3.0 and earlier allows local users to bypass intended access restrictions, and read or write to files, by entering an unspecified CLI command… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-6265 2024-11-21 11:34 2015-08-27 Show GitHub Exploit DB Packet Storm
212885 - cisco telepresence_video_communication_server_software Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows remote authenticated users to bypass intended access restrictions and read configuration files by leveraging the Mobile an… CWE-200
Information Exposure 		CVE-2015-6261 2024-11-21 11:34 2015-08-26 Show GitHub Exploit DB Packet Storm
212886 - videolan vlc_media_player VideoLAN VLC media player 2.2.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP file, which triggers the freeing of arbitrary pointe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5949 2024-11-21 11:34 2015-08-26 Show GitHub Exploit DB Packet Storm
212887 - cisco prime_infrastructure Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) and 2.0(0.0) allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCum49054 a… CWE-352
 Origin Validation Error 		CVE-2015-6262 2024-11-21 11:34 2015-08-25 Show GitHub Exploit DB Packet Storm
212888 - oracle
wireshark 		solaris
wireshark 		The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.7 does not prevent the conflicting use of a table for both IPv4 … CWE-20
 Improper Input Validation  		CVE-2015-6249 2024-11-21 11:34 2015-08-25 Show GitHub Exploit DB Packet Storm
212889 - oracle
wireshark 		solaris
linux
wireshark 		The ptvcursor_add function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data is available, which allows remote attac… CWE-20
 Improper Input Validation  		CVE-2015-6248 2024-11-21 11:34 2015-08-25 Show GitHub Exploit DB Packet Storm
212890 - oracle
wireshark 		solaris
wireshark 		The dissect_openflow_tablemod_v5 function in epan/dissectors/packet-openflow_v5.c in the OpenFlow dissector in Wireshark 1.12.x before 1.12.7 does not validate a certain offset value, which allows re… CWE-20
 Improper Input Validation  		CVE-2015-6247 2024-11-21 11:34 2015-08-25 Show GitHub Exploit DB Packet Storm