Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256921	6.8	警告	サイバートラスト株式会社 Mozilla Foundation Pango.org レッドハット	-	Pango の pango_glyph_string_set_size 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1194	2010-02-17 11:44	2009-05-8	Show	GitHub Exploit DB Packet Storm

256922	9.3	危険	Artifex Software サイバートラスト株式会社 Argyll CMS サン・マイクロシステムズレッドハット	-	Ghostscript の ICC Format ライブラリにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0792	2010-02-17 11:44	2009-04-14	Show	GitHub Exploit DB Packet Storm

256923	9.3	危険	Artifex Software サイバートラスト株式会社サン・マイクロシステムズレッドハット	-	ICC Format ライブラリにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-0584	2010-02-17 11:44	2009-03-23	Show	GitHub Exploit DB Packet Storm

256924	9.3	危険	Artifex Software サイバートラスト株式会社サン・マイクロシステムズレッドハット	-	ICC Format ライブラリにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0583	2010-02-17 11:43	2009-03-23	Show	GitHub Exploit DB Packet Storm

256925	6	警告	Artifex Software サイバートラスト株式会社レッドハット	-	Ghostscript の zseticcspace() 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0411	2010-02-17 11:43	2008-02-27	Show	GitHub Exploit DB Packet Storm

256926	2.1	注意	サイバートラスト株式会社レッドハット	-	lm_sensors の pwmconfig (スクリプト)における不適切な一時ファイル作成によるシンボリックリンク攻撃を受ける脆弱性	-	CVE-2005-2672	2010-02-17 11:43	2005-08-22	Show	GitHub Exploit DB Packet Storm

256927	9.3	危険	アップル	-	Apple Mac OS X の Image RAW における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0037	2010-02-16 11:45	2010-01-19	Show	GitHub Exploit DB Packet Storm

256928	9.3	危険	アップル	-	Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0036	2010-02-16 11:45	2010-01-19	Show	GitHub Exploit DB Packet Storm

256929	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-4003	2010-02-16 11:44	2010-01-19	Show	GitHub Exploit DB Packet Storm

256930	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4002	2010-02-16 11:44	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200191	4.3	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user's computer. The attacker is restricted as they are unable to download …	CWE-20 Improper Input Validation	CVE-2020-6797	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

200192	6.5	MEDIUM Network	mozilla	thunderbird	When processing a message that contains multiple S/MIME signatures, a bug in the MIME processing code caused a null pointer dereference, leading to an unexploitable crash. This vulnerability affects …	CWE-476 NULL Pointer Dereference	CVE-2020-6795	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

200193	6.5	MEDIUM Network	mozilla canonical	thunderbird ubuntu_linux	If a user saved passwords before Thunderbird 60 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was no…	CWE-312 CWE-459 CWE-522 Cleartext Storage of Sensitive Information Incomplete Cleanup Insufficiently Protected Credentials	CVE-2020-6794	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

200194	6.5	MEDIUM Network	mozilla	thunderbird	When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird < 68.5.	CWE-908 Use of Uninitialized Resource	CVE-2020-6793	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

200195	4.3	MEDIUM Network	mozilla canonical	thunderbird ubuntu_linux	When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.	CWE-908 CWE-909 Use of Uninitialized Resource Missing Initialization of Resource	CVE-2020-6792	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

200196	6.1	MEDIUM Network	mozilla	webthings_gateway	A reflected XSS vulnerability exists within the gateway, allowing an attacker to craft a specialized URL which could steal the user's authentication token. When combined with CVE-2020-6803, an attack…	CWE-79 Cross-site Scripting	CVE-2020-6804	2024-11-21 14:36	2020-02-29	Show	GitHub Exploit DB Packet Storm

200197	6.1	MEDIUM Network	mozilla	webthings_gateway	An open redirect is present on the gateway's login page, which could cause a user to be redirected to a malicious site after logging in.	CWE-601 Open Redirect	CVE-2020-6803	2024-11-21 14:36	2020-02-29	Show	GitHub Exploit DB Packet Storm

200198	5.3	MEDIUM Network	php tenable debian opensuse	php tenable.sc debian_linux leap	In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator() function, the files are added with default permissions (06…	CWE-281 Improper Preservation of Permissions	CVE-2020-7063	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm

200199	7.5	HIGH Network	php opensuse debian canonical	php leap debian_linux ubuntu_linux	In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.upload_progress.cleanup is set …	CWE-476 NULL Pointer Dereference	CVE-2020-7062	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm

200200	9.1	CRITICAL Network	php tenable	php tenable.sc	In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension, certain content inside PHAR file could lead to one-byte read past the allocated …	CWE-125 Out-of-bounds Read	CVE-2020-7061	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm