Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218621	7.5	危険	FreeType Project	-	FreeType の cff/cf2hints.c 内の cf2_hintmap_build 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-2240	2014-03-14 14:19	2014-03-7	Show	GitHub Exploit DB Packet Storm

218622	4.3	警告	CiviCRM Caseproof Joobi	-	複数ベンダの製品で使用される Open Flash Chart の open-flash-chart.swf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1636	2014-03-14 13:48	2013-06-10	Show	GitHub Exploit DB Packet Storm

218623	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2014-0502	2014-03-13 18:24	2014-02-20	Show	GitHub Exploit DB Packet Storm

218624	7.8	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0499	2014-03-13 18:23	2014-02-20	Show	GitHub Exploit DB Packet Storm

218625	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0498	2014-03-13 18:19	2014-02-20	Show	GitHub Exploit DB Packet Storm

218626	3.5	注意	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Optimizer に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0437	2014-03-13 18:18	2014-01-14	Show	GitHub Exploit DB Packet Storm

218627	10	危険	シスコシステムズ	-	Cisco Unified SIP Phone 3905 のファームウェアにおける root アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0721	2014-03-13 17:45	2014-02-19	Show	GitHub Exploit DB Packet Storm

218628	7.5	危険	Raoul Proenca	-	Gnew の users/login.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-5639	2014-03-13 17:45	2013-10-2	Show	GitHub Exploit DB Packet Storm

218629	7.8	危険	シスコシステムズ	-	Cisco IPS ソフトウェアのコントロールプレーンのアクセスリストの実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0719	2014-03-13 17:42	2014-02-19	Show	GitHub Exploit DB Packet Storm

218630	4.4	警告	Novell Logilab.org	-	logilab-common の shellutils の Execute クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2014-1839	2014-03-13 16:43	2014-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296081	-	powerdns	authoritative_server	common_startup.cc in PowerDNS (aka pdns) Authoritative Server before 2.9.22.5 and 3.x before 3.0.1 allows remote attackers to cause a denial of service (packet loop) via a crafted UDP DNS response.	CWE-399 Resource Management Errors	CVE-2012-0206	2024-11-21 10:34	2012-02-18	Show	GitHub Exploit DB Packet Storm

296082	-	cisco	nx-os nexus_1000v nexus_5000 nexus_5010 nexus_5020 nexus_5548p nexus_5548up nexus_5596up nexus_7000 nexus_7000_10-slot nexus_7000_18-slot nexus_7000_9-slot	Cisco NX-OS 4.2.x before 4.2(1)SV1(5.1) on Nexus 1000v series switches; 4.x and 5.0.x before 5.0(2)N1(1) on Nexus 5000 series switches; and 4.2.x before 4.2.8, 5.0.x before 5.0.5, and 5.1.x before 5.…	CWE-399 Resource Management Errors	CVE-2012-0352	2024-11-21 10:34	2012-02-17	Show	GitHub Exploit DB Packet Storm

296083	-	microsoft	internet_explorer	Microsoft Internet Explorer 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka "VML Remote Code Execution Vulnera…	CWE-94 Code Injection	CVE-2012-0155	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296084	-	microsoft	windows_server_2008 windows_xp windows_7 windows_server_2003 windows_vista	Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Win…	CWE-399 Resource Management Errors	CVE-2012-0154	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296085	-	microsoft	windows_server_2008 windows_7 windows_vista	Buffer overflow in msvcrt.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted media…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0150	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296086	-	microsoft	windows_server_2003	afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a craft…	CWE-20 Improper Input Validation	CVE-2012-0149	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296087	-	microsoft	windows_server_2008 windows_xp windows_server_2003 windows_vista windows_7	afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platfor…	CWE-20 Improper Input Validation	CVE-2012-0148	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296088	-	microsoft	sharepoint_server sharepoint_foundation	Cross-site scripting (XSS) vulnerability in wizardlist.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbit…	CWE-79 Cross-site Scripting	CVE-2012-0145	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296089	-	microsoft	sharepoint_server sharepoint_foundation	Cross-site scripting (XSS) vulnerability in themeweb.aspx in Microsoft Office SharePoint Server 2010 Gold and SP1 and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitra…	CWE-79 Cross-site Scripting	CVE-2012-0144	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm

296090	-	microsoft	visio_viewer	Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, a…	CWE-94 Code Injection	CVE-2012-0138	2024-11-21 10:34	2012-02-15	Show	GitHub Exploit DB Packet Storm