Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252011	4.3	警告	Google	-	Google Chrome におけるポップアップブロッカーを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3246	2011-01-27 14:37	2010-09-2	Show	GitHub Exploit DB Packet Storm

252012	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および SeaMonkey の Gopher パーサにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3177	2011-01-27 14:26	2010-10-19	Show	GitHub Exploit DB Packet Storm

252013	6.9	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Linux 上で稼働する複数の Mozilla 製品における application-launch スクリプトに関する権限昇格の脆弱性	CWE-DesignError	CVE-2010-3182	2011-01-27 14:24	2010-10-19	Show	GitHub Exploit DB Packet Storm

252014	7.6	危険	GNOME Project レッドハット	-	Evince の TFM フォントパーサにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2643	2011-01-26 15:32	2011-01-5	Show	GitHub Exploit DB Packet Storm

252015	7.6	危険	GNOME Project レッドハット	-	Evince の AFM フォントパーサにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2642	2011-01-26 15:30	2011-01-5	Show	GitHub Exploit DB Packet Storm

252016	7.6	危険	GNOME Project レッドハット	-	Evince の VF フォントパーサにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2641	2011-01-26 15:21	2011-01-5	Show	GitHub Exploit DB Packet Storm

252017	7.6	危険	GNOME Project レッドハット	-	Evince の PK フォントパーサにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2640	2011-01-26 15:10	2011-01-5	Show	GitHub Exploit DB Packet Storm

252018	5	警告	MODX	-	MODx Evolution におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3930	2011-01-26 14:02	2011-01-26	Show	GitHub Exploit DB Packet Storm

252019	7.5	危険	MODX	-	MODx Evolution における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3929	2011-01-26 14:01	2011-01-26	Show	GitHub Exploit DB Packet Storm

252020	9.3	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4042	2011-01-26 13:28	2010-10-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268011	9.0	CRITICAL Network	westermo	weos	Westermo WeOS before 4.19.0 uses the same SSL private key across different customers' installations, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanism…	CWE-310 Cryptographic Issues	CVE-2015-7923	2024-11-21 11:37	2016-01-30	Show	GitHub Exploit DB Packet Storm

268012	7.7	HIGH Network	ntp siemens netapp debian	ntp tim_4r-ie_firmware tim_4r-ie_dnp3_firmware oncommand_balance clustered_data_ontap debian_linux	NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via a…	CWE-287 Improper Authentication	CVE-2015-7974	2024-11-21 11:37	2016-01-27	Show	GitHub Exploit DB Packet Storm

268013	5.9	MEDIUM Network	wolfssl opensuse mariadb	wolfssl leap opensuse mariadb	wolfSSL (formerly CyaSSL) before 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimization…	NVD-CWE-noinfo	CVE-2015-7744	2024-11-21 11:37	2016-01-23	Show	GitHub Exploit DB Packet Storm

268014	7.3	HIGH Network	hospira	communication_engine lifecare_pca_infusion_system	Stack-based buffer overflow in Hospira Communication Engine (CE) before 1.2 in LifeCare PCA Infusion System 5.07, Plum A+ Infusion System 13.40, and Plum A+3 Infusion System 13.40 allows remote attac…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7909	2024-11-21 11:37	2016-01-22	Show	GitHub Exploit DB Packet Storm

268015	3.7	LOW Network	netapp	data_ontap	NetApp Data ONTAP before 8.2.4P1, when 7-Mode and HTTP access are enabled, allows remote attackers to obtain sensitive volume information via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-7886	2024-11-21 11:37	2016-01-18	Show	GitHub Exploit DB Packet Storm

268016	3.7	LOW Network	f5	big-ip_analytics big-ip_application_acceleration_manager big-ip_link_controller big-ip_advanced_firewall_manager big-ip_policy_enforcement_manager big-ip_local_traffic_manager big-i…	BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 12.0.0 before HF1, when the TCP profile for a virtual server is configured with Congestion Metrics Cache enabled, allow remote atta…	CWE-20 Improper Input Validation	CVE-2015-7759	2024-11-21 11:37	2016-01-13	Show	GitHub Exploit DB Packet Storm

268017	7.8	HIGH Local	huawei	p8_firmware mate_7_firmware	Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 bef…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8088	2024-11-21 11:37	2016-01-13	Show	GitHub Exploit DB Packet Storm

268018	6.1	MEDIUM Network	ssp-europe	secure_data_space	Multiple cross-site scripting (XSS) vulnerabilities in Secure Data Space SDS-API before 3.5.7 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to api/v3/public/shar…	CWE-79 Cross-site Scripting	CVE-2015-7706	2024-11-21 11:37	2016-01-12	Show	GitHub Exploit DB Packet Storm

268019	9.6	CRITICAL Network	unitronics	visilogic_oplc_ide	Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7939	2024-11-21 11:37	2016-01-9	Show	GitHub Exploit DB Packet Storm

268020	9.8	CRITICAL Network	advantech	eki-1321_series_firmware eki-1322_series_firmware	Advantech EKI-132x devices with firmware before 2015-12-31 allow remote attackers to bypass authentication via unspecified vectors.	CWE-287 Improper Authentication	CVE-2015-7938	2024-11-21 11:37	2016-01-9	Show	GitHub Exploit DB Packet Storm