Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252031	7.2	危険	GNU Project VMware サイバートラスト株式会社レッドハット	-	GNU C library の ld.so における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3856	2011-01-25 15:48	2010-10-25	Show	GitHub Exploit DB Packet Storm

252032	5.8	警告	Mozilla Foundation オラクル	-	Mozilla Firefox の JavaScript 実装内にある js_InitRandom 関数におけるシード値を推測される脆弱性	CWE-310 暗号の問題	CVE-2010-3400	2011-01-25 15:15	2010-09-15	Show	GitHub Exploit DB Packet Storm

252033	4.3	警告	Mozilla Foundation オラクル	-	Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2117	2011-01-25 15:13	2010-06-1	Show	GitHub Exploit DB Packet Storm

252034	6.8	警告	アップル	-	Apple Mac OS X における脆弱性に対するアップデート	CWE-134 書式文字列の問題	CVE-2010-4013	2011-01-25 15:10	2011-01-7	Show	GitHub Exploit DB Packet Storm

252035	5	警告	GNU Project	-	GNU C Library の regcomp 実装におけるスタック消費の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4052	2011-01-21 16:37	2011-01-13	Show	GitHub Exploit DB Packet Storm

252036	5	警告	GNU Project	-	GNU C Library の regcomp 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-4051	2011-01-21 16:35	2011-01-13	Show	GitHub Exploit DB Packet Storm

252037	-	-	（複数のベンダ）	-	侵入検知システム (IDS) および侵入防止システム (IPS) の機能を回避可能な問題	-	-	2011-01-21 16:30	2010-12-16	Show	GitHub Exploit DB Packet Storm

252038	6.9	警告	Ecava	-	Ecava IntegraXor における権限昇格の脆弱性	CWE-Other その他	CVE-2010-4599	2011-01-21 15:52	2010-12-17	Show	GitHub Exploit DB Packet Storm

252039	5	警告	Ecava	-	Ecava IntegraXor におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4598	2011-01-21 15:38	2011-01-12	Show	GitHub Exploit DB Packet Storm

252040	6.8	警告	Lunascape	-	Lunascape における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3927	2011-01-21 11:02	2011-01-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299831	9.8	CRITICAL Network	status	statusnet	Unspecified vulnerability in statusnet through 2010 due to the way addslashes are used in SQL string escapes..	CWE-20 Improper Input Validation	CVE-2010-4660	2024-11-21 10:21	2019-11-21	Show	GitHub Exploit DB Packet Storm

299832	5.5	MEDIUM Local	pithos_project debian	pithos debian_linux	pithos before 0.3.5 allows overwrite of arbitrary files via symlinks.	CWE-59 Link Following	CVE-2010-4817	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299833	8.8	HIGH Network	consolekit_project debian redhat	consolekit debian_linux enterprise_linux	In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows an authenticated system user to escalate their privileges by initiating a remote VNC session.	CWE-269 Improper Privilege Management	CVE-2010-4664	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299834	7.8	HIGH Local	udisks_project redhat debian opensuse fedoraproject	udisks enterprise_linux debian_linux opensuse fedora	udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2010-4661	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299835	7.5	HIGH Network	php redhat debian	php enterprise_linux debian_linux	PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. This results in memory leak into the resulting output.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2010-4657	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299836	7.8	HIGH Local	freedesktop debian	poppler debian_linux	poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.	CWE-74 Injection	CVE-2010-4654	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299837	6.5	MEDIUM Network	freedesktop debian	poppler debian_linux	An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.	CWE-190 Integer Overflow or Wraparound	CVE-2010-4653	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299838	9.8	CRITICAL Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies.	CWE-295 Improper Certificate Validation	CVE-2010-4533	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299839	5.9	MEDIUM Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks.	CWE-295 Improper Certificate Validation	CVE-2010-4532	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299840	-		ghostscript	ghostscript	Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working direc…	CWE-94 Code Injection	CVE-2010-4820	2024-11-21 10:21	2014-10-27	Show	GitHub Exploit DB Packet Storm