Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241501	6.9	警告	amiga	-	aview の asciiview における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4935	2012-06-26 16:03	2008-11-5	Show	GitHub Exploit DB Packet Storm

241502	9	危険	comingchina	-	U-Mail Webmail サーバの webmail/modules/filesystem/edit.php における任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-4932	2012-06-26 16:03	2008-11-5	Show	GitHub Exploit DB Packet Storm

241503	4.3	警告	firmchannel	-	firmCHANNEL Digital Signage の account モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4931	2012-06-26 16:03	2008-11-5	Show	GitHub Exploit DB Packet Storm

241504	9.3	危険	マイクロソフト djvu	-	DjVu_ActiveX_MSOffice.dll の DjVu ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4922	2012-06-26 16:03	2008-11-4	Show	GitHub Exploit DB Packet Storm

241505	4.6	警告	VMware	-	複数の VMware 製品のゲスト仮想デバイスドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-4916	2012-06-26 16:02	2009-04-3	Show	GitHub Exploit DB Packet Storm

241506	9.3	危険	EZB Systems	-	UltraISO におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4825	2012-06-26 16:02	2009-04-1	Show	GitHub Exploit DB Packet Storm

241507	7.5	危険	Chipmunk Scripts	-	Chipmunk CMS の board/admin/reguser.php における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4921	2012-06-26 16:02	2008-11-4	Show	GitHub Exploit DB Packet Storm

241508	7.5	危険	chattaitaliano	-	Chattaitaliano Istant-Replay の read.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-4911	2012-06-26 16:02	2008-11-3	Show	GitHub Exploit DB Packet Storm

241509	4.3	警告	compact cms	-	CompactCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4909	2012-06-26 16:02	2008-11-3	Show	GitHub Exploit DB Packet Storm

241510	3.3	注意	crossfire	-	CrossFire crossfire-maps の maps/Info/combine.pl における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4908	2012-06-26 16:02	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267451	7.3	HIGH Local	linux google	linux_kernel android	arch/arm64/kernel/perf_event.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via vectors involving…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8955	2024-11-21 11:39	2016-10-10	Show	GitHub Exploit DB Packet Storm

267452	7.8	HIGH Local	google	android	Multiple use-after-free vulnerabilities in sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm sound driver in Android before 2016-10-05 on Nexus 5X, Nexus 6P, and Android One devices allow attack…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8951	2024-11-21 11:39	2016-10-10	Show	GitHub Exploit DB Packet Storm

267453	5.5	MEDIUM Local	linux	linux_kernel	arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obta…	CWE-200 Information Exposure	CVE-2015-8950	2024-11-21 11:39	2016-10-10	Show	GitHub Exploit DB Packet Storm

267454	9.8	CRITICAL Network	debian uclouvain	debian_linux openjpeg	Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG before 2.1.1 allows remote attackers to have unspecified impact via unknown vectors.	CWE-416 Use After Free	CVE-2015-8871	2024-11-21 11:39	2016-09-21	Show	GitHub Exploit DB Packet Storm

267455	8.1	HIGH Network	ietf netapp	transport_layer_security snap_creator_framework data_ontap_edge snapdrive snapmanager smi-s_provider host_agent clustered_data_ontap_antivirus_connector solidfire_\&_hci_m…	The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute t…	CWE-295 Improper Certificate Validation	CVE-2015-8960	2024-11-21 11:39	2016-09-21	Show	GitHub Exploit DB Packet Storm

267456	5.5	MEDIUM Local	suse canonical libarchive	linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop ubuntu_linux libarchive	The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ra…	CWE-125 Out-of-bounds Read	CVE-2015-8934	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

267457	5.5	MEDIUM Local	libarchive suse canonical	libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop ubuntu_linux	Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafte…	CWE-190 Integer Overflow or Wraparound	CVE-2015-8933	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

267458	5.5	MEDIUM Local	canonical debian suse libarchive	ubuntu_linux debian_linux linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive	The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which trigg…	CWE-20 Improper Input Validation	CVE-2015-8932	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

267459	7.8	HIGH Local	libarchive suse canonical debian	libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop ubuntu_linux debian_linux	Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in libarchive before 3.2.0 allow remote attackers to have unspecified impa…	CWE-190 Integer Overflow or Wraparound	CVE-2015-8931	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

267460	7.5	HIGH Network	suse libarchive canonical	linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive ubuntu_linux	bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself.	CWE-20 Improper Input Validation	CVE-2015-8930	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm