Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231421 10 危険 リアルネットワークス - RealNetworks RealPlayer の ATRC コーデックにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4250 2012-11-1 17:21 2011-11-18 Show GitHub Exploit DB Packet Storm
231422 10 危険 リアルネットワークス - RealNetworks RealPlayer の RV30 コーデックにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4249 2012-11-1 17:18 2011-11-18 Show GitHub Exploit DB Packet Storm
231423 9.3 危険 リアルネットワークス - RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4247 2012-11-1 17:16 2011-11-18 Show GitHub Exploit DB Packet Storm
231424 10 危険 リアルネットワークス - RealNetworks RealPlayer の AAC コーデックにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-4246 2012-11-1 17:13 2011-11-18 Show GitHub Exploit DB Packet Storm
231425 10 危険 リアルネットワークス - RealNetworks RealPlayer の RealVideo レンダラにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-4245 2012-11-1 17:11 2011-11-18 Show GitHub Exploit DB Packet Storm
231426 3.5 注意 TomatoCart - TomatoCart の PayPal Express Checkout モジュールに検証不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4934 2012-11-1 16:03 2012-10-31 Show GitHub Exploit DB Packet Storm
231427 1.4 注意 マイクロソフト - Simple Certificate Enrollment Protocol (SCEP) の実装に問題 - - 2012-11-1 15:59 2012-06-29 Show GitHub Exploit DB Packet Storm
231428 10 危険 Invision Power Services, Inc - Invision Power Board の admin/sources/base/core.php における脆弱性 CWE-noinfo
情報不足 		CVE-2012-5692 2012-11-1 11:55 2012-10-25 Show GitHub Exploit DB Packet Storm
231429 3.3 注意 DELL EMC (旧 EMC Corporation) - EMC Avamar Client for VMware における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-4610 2012-11-1 11:54 2012-10-31 Show GitHub Exploit DB Packet Storm
231430 10 危険 Laurent Destailleur - AWStats の awredir.pl における脆弱性 CWE-noinfo
情報不足 		CVE-2012-4547 2012-11-1 11:53 2012-10-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292651 - advance_productivity_software dte_axiom Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, an… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2455 2024-11-21 10:39 2012-11-10 Show GitHub Exploit DB Packet Storm
292652 - xen xen
xen-unstable 		The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service (memory consumption) via a large (1… CWE-20
 Improper Input Validation  		CVE-2012-2625 2024-11-21 10:39 2012-11-1 Show GitHub Exploit DB Packet Storm
292653 - redhat rhncfg Red Hat Network (RHN) Configuration Client (rhncfg-client) in rhncfg before 5.10.27-8 uses weak permissions (world-readable) for /var/log/rhncfg-actions, which allows local users to obtain sensitive … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2679 2024-11-21 10:39 2012-10-23 Show GitHub Exploit DB Packet Storm
292654 - microsoft sql_server
sql_server_reporting_services 		Cross-site scripting (XSS) vulnerability in the SQL Server Report Manager in Microsoft SQL Server 2000 Reporting Services SP2 and SQL Server 2005 SP4, 2008 SP2 and SP3, 2008 R2 SP1, and 2012 allows r… CWE-79
Cross-site Scripting 		CVE-2012-2552 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292655 - microsoft windows_server_2008
windows_7 		The server in Kerberos in Microsoft Windows Server 2008 R2 and R2 SP1, and Windows 7 Gold and SP1, allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via a cra… NVD-CWE-Other
CVE-2012-2551 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292656 - microsoft works Microsoft Works 9 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted Word .doc file, aka "Works Heap Vulnerability." CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2550 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292657 - microsoft windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista 		Integer overflow in the kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users … CWE-189
Numeric Errors 		CVE-2012-2529 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292658 - microsoft word_automation_services
word
office_compatibility_pack
word_viewer
office_web_apps 		Use-after-free vulnerability in Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; Word Automation Services on Microsoft SharePoint Server 20… CWE-399
 Resource Management Errors 		CVE-2012-2528 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292659 - microsoft sharepoint_server
lync
groove_server
office_communicator
infopath
sharepoint_services
office_web_apps
sharepoint_foundation 		Cross-site scripting (XSS) vulnerability in Microsoft InfoPath 2007 SP2 and SP3 and 2010 SP1, Communicator 2007 R2, Lync 2010 and 2010 Attendee, SharePoint Server 2007 SP2 and SP3 and 2010 SP1, Groov… CWE-79
Cross-site Scripting 		CVE-2012-2520 2024-11-21 10:39 2012-10-10 Show GitHub Exploit DB Packet Storm
292660 - google chrome Skia, as used in Google Chrome before 22.0.1229.92, does not properly render text, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other im… NVD-CWE-noinfo
CVE-2012-2900 2024-11-21 10:39 2012-10-9 Show GitHub Exploit DB Packet Storm