Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252071 7.2 危険 マイクロソフト - Microsoft Windows XP の win32k.sys における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-0673 2011-05-9 11:56 2011-04-12 Show GitHub Exploit DB Packet Storm
252072 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1242 2011-05-9 11:55 2011-04-12 Show GitHub Exploit DB Packet Storm
252073 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1241 2011-05-9 11:53 2011-04-12 Show GitHub Exploit DB Packet Storm
252074 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1240 2011-05-9 11:52 2011-04-12 Show GitHub Exploit DB Packet Storm
252075 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1239 2011-05-9 11:51 2011-04-12 Show GitHub Exploit DB Packet Storm
252076 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1238 2011-05-9 11:50 2011-04-12 Show GitHub Exploit DB Packet Storm
252077 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1237 2011-05-9 11:49 2011-04-12 Show GitHub Exploit DB Packet Storm
252078 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1236 2011-05-9 11:48 2011-04-12 Show GitHub Exploit DB Packet Storm
252079 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1235 2011-05-9 11:46 2011-04-12 Show GitHub Exploit DB Packet Storm
252080 6.8 警告 freedesktop.org
サイバートラスト株式会社
foolabs
OpenOffice.org Project
レッドハット		 - xpdf および poppler などの製品で利用される PDF パーサの FoFiType1::parse 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3704 2011-05-9 11:29 2010-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255571 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12187 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255572 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12186 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255573 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12185 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255574 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12184 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255575 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12183 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255576 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12182 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255577 9.8 CRITICAL
Network 		debian
x.org 		debian_linux
xorg-server 		xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code. CWE-20
 Improper Input Validation  		CVE-2017-12181 2024-11-21 12:09 2018-01-25 Show GitHub Exploit DB Packet Storm
255578 7.5 HIGH
Network 		apache nifi A malicious host header in an incoming HTTP request could cause NiFi to load resources from an external server. The fix to sanitize host headers and compare to a controlled whitelist was applied on t… CWE-20
 Improper Input Validation  		CVE-2017-12632 2024-11-21 12:09 2018-01-24 Show GitHub Exploit DB Packet Storm
255579 6.5 MEDIUM
Network 		libpam4j_project
redhat
debian 		libpam4j
enterprise_linux
debian_linux 		It was found that libpam4j up to and including 1.8 did not properly validate user accounts when authenticating. A user with a valid password for a disabled account would be able to bypass security re… CWE-20
 Improper Input Validation  		CVE-2017-12197 2024-11-21 12:09 2018-01-19 Show GitHub Exploit DB Packet Storm
255580 6.1 MEDIUM
Network 		cisco sg350-10_firmware
sg350-10p_firmware
sg350-10mp_firmware
sg355-10p_firmware
sg350-28_firmware
sg350-28p_firmware
sg350-28mp_firmware
sf350-48_firmware
sf350-48p_firmware
sf… 		A vulnerability in the web framework of Cisco Small Business Managed Switches software could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack against a user of t… NVD-CWE-Other
CVE-2017-12308 2024-11-21 12:09 2018-01-18 Show GitHub Exploit DB Packet Storm