Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252071 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Consent User Interface における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3961 2011-01-17 15:06 2010-12-14 Show GitHub Exploit DB Packet Storm
252072 7.2 危険 マイクロソフト - Microsoft Windows 製品の Routing and Remote Access NDProxy コンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3963 2011-01-17 15:03 2010-12-14 Show GitHub Exploit DB Packet Storm
252073 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3944 2011-01-17 14:45 2010-12-14 Show GitHub Exploit DB Packet Storm
252074 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3943 2011-01-17 14:38 2010-12-14 Show GitHub Exploit DB Packet Storm
252075 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3942 2011-01-17 14:35 2010-12-14 Show GitHub Exploit DB Packet Storm
252076 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3941 2011-01-17 14:29 2010-12-14 Show GitHub Exploit DB Packet Storm
252077 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
252078 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
252079 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
252080 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313151 - - - Use after free in Sharing in Google Chrome on iOS prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) - CVE-2024-7533 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313152 - - - 1Password 8 before 8.10.36 for macOS allows local attackers to exfiltrate vault items because XPC inter-process communication validation is insufficient. - CVE-2024-42219 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313153 - - - There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack. Successful exploitation could allow an attacker to execute arbitrary… - CVE-2024-42393 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313154 - - - An issue in Koha ILS 23.05 and before allows a remote attacker to execute arbitrary code via a crafted script to the format parameter. - CVE-2024-28739 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313155 - - - matrix-react-sdk is a react-based SDK for inserting a Matrix chat/voip client into a web page. A malicious homeserver could manipulate a user's account data to cause the client to enable URL preview… - CVE-2024-42347 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313156 - - - Qwik is a performance focused javascript framework. A potential mutation XSS vulnerability exists in Qwik for versions up to but not including 1.6.0. Qwik improperly escapes HTML on server-side rende… - CVE-2024-41677 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313157 - - - A crafted DPA file could force Delta Electronics DIAScreen to overflow a stack-based buffer, which could allow an attacker to execute arbitrary code. - CVE-2024-7502 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313158 - - - PDFio is a simple C library for reading and writing PDF files. There is a denial of service (DOS) vulnerability in the TTF parser. Maliciously crafted TTF files can cause the program to utilize 100% … - CVE-2024-42358 2024-08-8 00:17 2024-08-7 Show GitHub Exploit DB Packet Storm
313159 - - - The lacks CSRF checks allowing a user to invite any user to any group (including private groups) - CVE-2024-2232 2024-08-7 23:35 2024-08-5 Show GitHub Exploit DB Packet Storm
313160 - - - The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks when deleting polls, which could allow attackers to make logged in users perform such action via a CSRF attack - CVE-2024-6496 2024-08-7 23:35 2024-08-1 Show GitHub Exploit DB Packet Storm