Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4601 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8951 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4602 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8952 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4603 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8955 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4604 9.8 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-8956 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4605 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8957 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4606 8.6 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-668
CWE-693
CVE-2026-8958 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4607 9.6 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-20
CWE-693
CVE-2026-8959 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4608 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8960 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4609 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8961 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
4610 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における保護メカニズムの不具合に関する脆弱性 CWE-693
保護メカニズムの不具合 		CVE-2026-8962 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312871 - linux
fedoraproject
suse
opensuse 		linux_kernel
fedora
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
linux_enterprise_real_time_extension 		Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service (memory corruption) or poss… CWE-190
 Integer Overflow or Wraparound 		CVE-2010-4157 2024-11-21 10:20 2010-12-11 Show GitHub Exploit DB Packet Storm
312872 - apple quicktime Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file. CWE-189
Numeric Errors 		CVE-2010-4009 2024-11-21 10:20 2010-12-10 Show GitHub Exploit DB Packet Storm
312873 - apple iphone_os Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pre… CWE-362
Race Condition 		CVE-2010-4012 2024-11-21 10:20 2010-12-9 Show GitHub Exploit DB Packet Storm
312874 - hp palm_webos Cross-site scripting (XSS) vulnerability in the Contacts Application in HP Palm webOS before 2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted vCard file. CWE-79
Cross-site Scripting 		CVE-2010-4109 2024-11-21 10:20 2010-12-9 Show GitHub Exploit DB Packet Storm
312875 - hp hp-ux HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors. NVD-CWE-Other
CVE-2010-4108 2024-11-21 10:20 2010-12-9 Show GitHub Exploit DB Packet Storm
312876 - redhat enterprise_mrg The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid (MRG) 1.3 recommends that Condor should be configured so that the MRG Management Console (cumin) can submit jobs for… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-4179 2024-11-21 10:20 2010-12-8 Show GitHub Exploit DB Packet Storm
312877 - dracut_project
udev_project 		dracut
udev 		plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from … CWE-276
Incorrect Default Permissions  		CVE-2010-4176 2024-11-21 10:20 2010-12-8 Show GitHub Exploit DB Packet Storm
312878 - systemtap systemtap The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary ker… CWE-20
 Improper Input Validation  		CVE-2010-4171 2024-11-21 10:20 2010-12-8 Show GitHub Exploit DB Packet Storm
312879 - systemtap systemtap The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment va… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-4170 2024-11-21 10:20 2010-12-8 Show GitHub Exploit DB Packet Storm
312880 - php php Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory … CWE-399
 Resource Management Errors 		CVE-2010-4150 2024-11-21 10:20 2010-12-8 Show GitHub Exploit DB Packet Storm