Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251381 6.3 警告 Linux - Linux kernel の btrfs_ioctl_clone 関数における append-only のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2537 2012-03-27 18:42 2010-09-30 Show GitHub Exploit DB Packet Storm
251382 3.5 注意 Joomla! - Joomla! の Back End におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2535 2012-03-27 18:42 2010-07-15 Show GitHub Exploit DB Packet Storm
251383 4.9 警告 アップル
FreeBSD
NetBSD		 - NetBSD などの製品で使用されるカーネルの smb_subr.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-2530 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251384 10 危険 Linux - Linux kernel の pppol2tp_xmit 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2495 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
251385 4.3 警告 Roundup - Roundup の cgi/client.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2491 2012-03-27 18:42 2010-09-24 Show GitHub Exploit DB Packet Storm
251386 7.2 危険 Linux - Linux kernel の ethtool_get_rxnfc 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2478 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251387 4.3 警告 Python Paste - Paste の paste.httpexceptions 実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2477 2012-03-27 18:42 2010-06-24 Show GitHub Exploit DB Packet Storm
251388 4.3 警告 Synology Inc. - Synology Disk Station におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2453 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251389 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Territory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2418 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251390 4 警告 オラクル - Oracle Supply Chain Products Suite の Agile PLM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2417 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253541 6.4 MEDIUM
Physics 		google android On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in … NVD-CWE-noinfo
CVE-2017-3749 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
253542 7.8 HIGH
Local 		google android On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly k… NVD-CWE-noinfo
CVE-2017-3748 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
253543 5.5 MEDIUM
Local 		lenovo nerve_center Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileg… NVD-CWE-noinfo
CVE-2017-3747 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
253544 5.4 MEDIUM
Network 		mcafee data_loss_prevention_endpoint Cross Site Scripting (XSS) in IMG Tags in the ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x allows authenticated users to inject arbitrary web script or HTML via injecti… CWE-79
Cross-site Scripting 		CVE-2017-3948 2024-11-21 12:26 2017-06-23 Show GitHub Exploit DB Packet Storm
253545 9.8 CRITICAL
Network 		emc avamar_server In EMC Avamar Server Software 7.4.1-58, 7.4.0-242, 7.3.1-125, 7.3.0-233, 7.3.0-226, an unauthorized attacker may leverage the file upload feature of the system maintenance page to load a maliciously … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-4990 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
253546 9.8 CRITICAL
Network 		emc avamar_server In EMC Avamar Server Software 7.3.1-125, 7.3.0-233, 7.3.0-226, 7.2.1-32, 7.2.1-31, 7.2.0-401, an unauthenticated remote attacker may potentially bypass the authentication process to gain access to th… CWE-287
Improper Authentication 		CVE-2017-4989 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
253547 7.2 HIGH
Network 		emc isilon_onefs EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected syste… NVD-CWE-noinfo
CVE-2017-4988 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
253548 7.8 HIGH
Local 		lenovo xclarity_administrator In Lenovo XClarity Administrator (LXCA) before 1.3.0, if service data is downloaded from LXCA, a non-administrative user may have access to password information for users that have previously authent… CWE-287
Improper Authentication 		CVE-2017-3745 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm
253549 6.5 MEDIUM
Network 		lenovo
ibm 		integrated_management_module_firmware In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture (FFDC) service log if the service log is generated… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-3744 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm
253550 7.5 HIGH
Network 		lenovo toolscenter_dynamic_system_analysis
advanced_settings_utility
updatexpress_system_pack_installer 		If multiple users are concurrently logged into a single system where one user is sending a command via the Lenovo ToolsCenter Advanced Settings Utility (ASU), UpdateXpress System Pack Installer (UXSP… CWE-200
Information Exposure 		CVE-2017-3743 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm