Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251991 4 警告 Linux
レッドハット		 - Linux kernel の bcm_connect 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3874 2011-01-31 15:49 2010-12-8 Show GitHub Exploit DB Packet Storm
251992 1.9 注意 Linux
レッドハット		 - Linux kernel の viafb_ioctl_get_viafb_info 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4082 2011-01-31 15:40 2010-11-30 Show GitHub Exploit DB Packet Storm
251993 1.9 注意 Linux
レッドハット		 - Linux kernel の ivtvfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4079 2011-01-31 15:03 2010-11-29 Show GitHub Exploit DB Packet Storm
251994 1.9 注意 Linux
レッドハット		 - Linux kernel の USB サブシステムにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4074 2011-01-31 15:01 2010-11-29 Show GitHub Exploit DB Packet Storm
251995 2.1 注意 Linux
レッドハット		 - Linux kernel の ethtool_get_rxnfc 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3861 2011-01-31 14:56 2010-12-10 Show GitHub Exploit DB Packet Storm
251996 4.9 警告 Linux
レッドハット		 - Linux kernel の hso_get_count 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3298 2011-01-28 16:03 2010-09-30 Show GitHub Exploit DB Packet Storm
251997 4.9 警告 Linux
レッドハット		 - Linux kernel の sound/core/seq/oss/seq_oss_init.c 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3080 2011-01-28 15:59 2010-09-20 Show GitHub Exploit DB Packet Storm
251998 9.3 危険 マイクロソフト - Microsoft Windows Vista の sdclt.exe にて使用される BitLocker Drive Encryption API における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3145 2011-01-28 15:56 2011-01-11 Show GitHub Exploit DB Packet Storm
251999 9.3 危険 マイクロソフト - MDAC および WDAC における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0027 2011-01-28 15:53 2011-01-11 Show GitHub Exploit DB Packet Storm
252000 9.3 危険 マイクロソフト - MDAC および WDAC の SQLConnectW 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0026 2011-01-28 15:50 2011-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268361 4.7 MEDIUM
Local 		redhat enterprise_linux
kernel-rt
enterprise_mrg 		Race condition in the kernel in Red Hat Enterprise Linux 7, kernel-rt and Red Hat Enterprise MRG 2, when the nfnetlink_log module is loaded, allows local users to cause a denial of service (panic) by… CWE-362
Race Condition 		CVE-2015-7553 2024-11-21 11:36 2017-09-15 Show GitHub Exploit DB Packet Storm
268362 7.5 HIGH
Network 		ldapauth-fork_project ldapauth-fork ldapauth-fork before 2.3.3 allows remote attackers to perform LDAP injection attacks via a crafted username. CWE-90
LDAP Injection 		CVE-2015-7294 2024-11-21 11:36 2017-09-7 Show GitHub Exploit DB Packet Storm
268363 9.8 CRITICAL
Network 		sap netweaver XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01. CWE-611
XXE 		CVE-2015-7241 2024-11-21 11:36 2017-09-7 Show GitHub Exploit DB Packet Storm
268364 5.3 MEDIUM
Network 		tinfoilsecurity devise-two-factor Tinfoil Devise-two-factor before 2.0.0 does not strictly follow section 5.2 of RFC 6238 and does not "burn" a successfully validated one-time password (aka OTP), which allows remote or physically pro… CWE-254
 7PK - Security Features 		CVE-2015-7225 2024-11-21 11:36 2017-09-7 Show GitHub Exploit DB Packet Storm
268365 9.8 CRITICAL
Network 		labwebdesigns double_opt-in_for_download Multiple SQL injection vulnerabilities in the Double Opt-In for Download plugin before 2.0.9 for WordPress allow remote attackers to execute arbitrary SQL commands via the ver parameter to (1) class-… CWE-89
SQL Injection 		CVE-2015-7517 2024-11-21 11:36 2017-08-30 Show GitHub Exploit DB Packet Storm
268366 7.5 HIGH
Network 		zte ox-330p_firmware
zxhn_h108n_firmware
w300v1.0.0s_zrd_tr1_d68_firmware
hg110_firmware
gan9.8t101a-b_firmware
mf28g_firmware 		ZTE OX-330P, ZXHN H108N, W300V1.0.0S_ZRD_TR1_D68, HG110, GAN9.8T101A-B, MF28G, ZXHN H108N use non-unique X.509 certificates and SSH host keys, which might allow remote attackers to obtain credentials… CWE-200
Information Exposure 		CVE-2015-7255 2024-11-21 11:36 2017-08-30 Show GitHub Exploit DB Packet Storm
268367 7.5 HIGH
Network 		onosproject onos ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service (NULL pointer dereference and switch disconnect) by sending two Ethernet frames with ether_type Jumbo Fr… CWE-476
 NULL Pointer Dereference 		CVE-2015-7516 2024-11-21 11:36 2017-08-25 Show GitHub Exploit DB Packet Storm
268368 8.8 HIGH
Network 		zte zxv10_w300_firmware ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login t… CWE-255
Credentials Management 		CVE-2015-7259 2024-11-21 11:36 2017-08-25 Show GitHub Exploit DB Packet Storm
268369 8.8 HIGH
Network 		zte zxv10_w300_firmware ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated users to obtain user passwords by displaying user information in a Telnet connection. CWE-255
Credentials Management 		CVE-2015-7258 2024-11-21 11:36 2017-08-25 Show GitHub Exploit DB Packet Storm
268370 7.5 HIGH
Network 		zte zxv10_w300_firmware ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated non-administrator users to change the admin password by intercepting an outgoing password chang… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2015-7257 2024-11-21 11:36 2017-08-25 Show GitHub Exploit DB Packet Storm