Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250941 7.6 危険 Alcatel-Lucent - Alcatel-Lucent OmniTouch Contact Center の CCAgent オプションのディフォルト設定における Contact Center 操作を監視または再設定される脆弱性 CWE-16
環境設定 		CVE-2010-3279 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
250942 2.1 注意 VMware - VMware Workstation および VMware Player のインストーラにおける Web スクリプトまたは HTML の想定外の解釈が発生する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3277 2012-03-27 18:42 2010-09-23 Show GitHub Exploit DB Packet Storm
250943 9.3 危険 VideoLAN - VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3276 2012-03-27 18:42 2011-03-28 Show GitHub Exploit DB Packet Storm
250944 9.3 危険 VideoLAN - VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3275 2012-03-27 18:42 2011-03-28 Show GitHub Exploit DB Packet Storm
250945 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3274 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
250946 5 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3273 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
250947 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3272 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
250948 6.8 警告 IBM - IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3271 2012-03-27 18:42 2011-07-18 Show GitHub Exploit DB Packet Storm
250949 6.8 警告 シスコシステムズ - Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3270 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
250950 9.3 危険 シスコシステムズ - Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3269 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277411 7.5 HIGH
Network 		fedoraproject
debian 		389_directory_server
fedora
debian_linux 		389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call. CWE-284
Improper Access Control 		CVE-2015-1854 2024-11-21 11:26 2017-09-20 Show GitHub Exploit DB Packet Storm
277412 6.1 MEDIUM
Network 		mantisbt mantisbt Cross-site scripting (XSS) vulnerability in MantisBT 1.2.13 and later before 1.2.20. CWE-79
Cross-site Scripting 		CVE-2015-2046 2024-11-21 11:26 2017-08-29 Show GitHub Exploit DB Packet Storm
277413 7.5 HIGH
Network 		estrongs es_file_explorer Directory traversal vulnerability in ES File Explorer 3.2.4.1. CWE-22
Path Traversal 		CVE-2015-1876 2024-11-21 11:26 2017-08-29 Show GitHub Exploit DB Packet Storm
277414 9.8 CRITICAL
Network 		samsung galaxy_s4_firmware The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to cause a denial of service (memory corruption) or gain privileges. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1801 2024-11-21 11:26 2017-08-25 Show GitHub Exploit DB Packet Storm
277415 7.5 HIGH
Network 		samsung galaxy_s4_firmware The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to potentially obtain sensitive information. CWE-200
Information Exposure 		CVE-2015-1800 2024-11-21 11:26 2017-08-25 Show GitHub Exploit DB Packet Storm
277416 6.8 MEDIUM
Physics 		thalesesecurity nshield_connect_firmware Thales nShield Connect hardware models 500, 1500, 6000, 500+, 1500+, and 6000+ before 11.72 allows physically proximate attackers to sign arbitrary data with previously loaded signing keys, extract t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-1878 2024-11-21 11:26 2017-08-19 Show GitHub Exploit DB Packet Storm
277417 9.8 CRITICAL
Network 		musl-libc musl Stack-based buffer overflow in the inet_pton function in network/inet_pton.c in musl libc 0.9.15 through 1.0.4, and 1.1.0 through 1.1.7 allows attackers to have unspecified impact via unknown vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1817 2024-11-21 11:26 2017-08-19 Show GitHub Exploit DB Packet Storm
277418 7.5 HIGH
Network 		fedoraproject
entrouvert 		fedora
lasso 		The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1783 2024-11-21 11:26 2017-08-12 Show GitHub Exploit DB Packet Storm
277419 9.8 CRITICAL
Network 		rest-client_project rest-client REST client for Ruby (aka rest-client) before 1.8.0 allows remote attackers to conduct session fixation attacks or obtain sensitive cookie information by leveraging passage of cookies set in a respon… CWE-384
 Session Fixation 		CVE-2015-1820 2024-11-21 11:26 2017-08-10 Show GitHub Exploit DB Packet Storm
277420 7.5 HIGH
Network 		appserver appserver Directory traversal vulnerability in the web request/response interface in Appserver before 1.0.3 allows remote attackers to read normally inaccessible files via a .. (dot dot) in a crafted URL. CWE-22
Path Traversal 		CVE-2015-1847 2024-11-21 11:26 2017-07-25 Show GitHub Exploit DB Packet Storm