Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252021 6.8 警告 Google - Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4041 2011-01-26 13:26 2010-10-19 Show GitHub Exploit DB Packet Storm
252022 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-4040 2011-01-26 13:23 2010-10-19 Show GitHub Exploit DB Packet Storm
252023 7.5 危険 Google - Linux 上で稼働する Google Chrome における脆弱性 CWE-DesignError
CWE-noinfo
CVE-2010-4039 2011-01-26 13:17 2010-10-19 Show GitHub Exploit DB Packet Storm
252024 4.3 警告 Google - Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4038 2011-01-26 13:12 2010-10-19 Show GitHub Exploit DB Packet Storm
252025 4.3 警告 Google - Google Chrome におけるポップアップブロッカーを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4037 2011-01-26 13:10 2010-10-19 Show GitHub Exploit DB Packet Storm
252026 6.8 警告 Google - Google Chrome における URL をなりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4036 2011-01-26 13:08 2010-10-19 Show GitHub Exploit DB Packet Storm
252027 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4035 2011-01-26 13:06 2010-10-19 Show GitHub Exploit DB Packet Storm
252028 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4034 2011-01-26 13:04 2010-10-19 Show GitHub Exploit DB Packet Storm
252029 5 警告 Google - Google Chrome におけるプロファイルスパム攻撃を誘導される脆弱性 CWE-Other
その他 		CVE-2010-4033 2011-01-26 13:01 2010-10-19 Show GitHub Exploit DB Packet Storm
252030 9.3 危険 Google - WebKit の WebCore 内にある toAlphabetic 関数における一つずれ (off-by-one) エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1773 2011-01-26 12:59 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272671 - linux
fedoraproject 		linux_kernel
fedora 		Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel before 4.0 allows context-dependent attackers to gain privi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2666 2024-11-21 11:27 2015-05-27 Show GitHub Exploit DB Packet Storm
272672 - mit kerberos_5 The kdcpreauth modules in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.2 do not properly track whether a client's request has been validated, which allows remote attackers to bypass an int… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2694 2024-11-21 11:27 2015-05-26 Show GitHub Exploit DB Packet Storm
272673 - realmd_project realmd realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf via a newline character in an LDAP response. CWE-74
Injection 		CVE-2015-2704 2024-11-21 11:27 2015-05-19 Show GitHub Exploit DB Packet Storm
272674 - gns3 gns3 Untrusted search path vulnerability in GNS3 1.2.3 allows local users to gain privileges via a Trojan horse uuid.dll in an unspecified directory. NVD-CWE-Other
CVE-2015-2667 2024-11-21 11:27 2015-05-19 Show GitHub Exploit DB Packet Storm
272675 - huawei seq_analyst XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter. NVD-CWE-Other
CVE-2015-2346 2024-11-21 11:27 2015-05-19 Show GitHub Exploit DB Packet Storm
272676 - concrete5 concrete5 Multiple cross-site scripting (XSS) vulnerabilities in concrete5 before 5.7.4 allow remote attackers to inject arbitrary web script or HTML via the (1) banned_word[] parameter to index.php/dashboard/… CWE-79
Cross-site Scripting 		CVE-2015-2250 2024-11-21 11:27 2015-05-16 Show GitHub Exploit DB Packet Storm
272677 - mozilla firefox The update implementation in Mozilla Firefox before 38.0 on Windows does not ensure that the pathname for updater.exe corresponds to the application directory, which might allow local users to gain p… CWE-17
Code 		CVE-2015-2720 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
272678 - opensuse
mozilla 		opensuse
firefox 		The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IF… CWE-200
Information Exposure 		CVE-2015-2718 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
272679 - mozilla
opensuse 		firefox
opensuse 		Integer overflow in libstagefright in Mozilla Firefox before 38.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and out-of-bounds read) vi… CWE-189
Numeric Errors 		CVE-2015-2717 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
272680 - mozilla
novell
opensuse
oracle 		firefox
suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit
thunderbird
solaris
firefox_esr 		Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code by providing a large amou… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2716 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm