Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258481 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258482 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258483 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
258484 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
258485 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
258486 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
258487 6.4 警告 アップル
ターボリナックス
CUPS		 - CUPS における DNS リバインド攻撃を誘導される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0164 2010-05-6 13:46 2009-04-24 Show GitHub Exploit DB Packet Storm
258488 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1188 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
258489 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1187 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
258490 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の custom heap management system におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1241 2010-04-30 10:26 2010-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197601 6.5 MEDIUM
Network 		mozilla firefox The browser could have been confused into transferring a screen sharing state into another tab, which would leak unintended information. This vulnerability affects Firefox < 85. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-23958 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197602 7.4 HIGH
Network 		mozilla firefox Navigations through the Android-specific `intent` URL scheme could have been misused to escape iframe sandbox. Note: This issue only affected Firefox for Android. Other operating systems are unaffect… NVD-CWE-noinfo
CVE-2021-23957 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197603 6.5 MEDIUM
Network 		mozilla firefox An ambiguous file picker design could have confused users who intended to select and upload a single file into uploading a whole directory. This was addressed by adding a new prompt. This vulnerabili… NVD-CWE-noinfo
CVE-2021-23956 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197604 6.1 MEDIUM
Network 		mozilla firefox The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. This vulnerability affects Firefox < 85. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-23955 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197605 8.8 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		Using the new logical assignment operators in a JavaScript switch statement could have caused a type confusion, leading to a memory corruption and a potentially exploitable crash. This vulnerability … CWE-843
Type Confusion 		CVE-2021-23954 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197606 4.3 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		If a user clicked into a specifically crafted PDF, the PDF reader could be confused into leaking cross-origin information, when said information is served as chunked data. This vulnerability affects … NVD-CWE-noinfo
CVE-2021-23953 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197607 8.1 HIGH
Network 		mozilla firefox When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp manifests for other origins. This could be u… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-23976 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197608 6.5 MEDIUM
Network 		mozilla firefox The developer page about:memory has a Measure function for exploring what object types the browser has allocated and their sizes. When this function was invoked we incorrectly called the sizeof funct… CWE-862
 Missing Authorization 		CVE-2021-23975 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197609 6.1 MEDIUM
Network 		mozilla firefox The DOMParser API did not properly process '<noscript>' elements for escaping. This could be used as an mXSS vector to bypass an HTML Sanitizer. This vulnerability affects Firefox < 86. NVD-CWE-noinfo
CVE-2021-23974 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
197610 6.5 MEDIUM
Network 		mozilla
debian 		firefox
firefox_esr
thunderbird
debian_linux 		When trying to load a cross-origin resource in an audio/video context a decoding error may have resulted, and the content of that error may have revealed information about the resource. This vulnerab… CWE-209
Information Exposure Through an Error Message 		CVE-2021-23973 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm