Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252081	6.9	警告	マイクロソフト	-	Microsoft Windows における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3966	2011-01-14 15:42	2010-12-14	Show	GitHub Exploit DB Packet Storm

252082	6.9	警告	マイクロソフト	-	Windows Media Encoder における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3965	2011-01-14 15:39	2010-12-14	Show	GitHub Exploit DB Packet Storm

252083	6.9	警告	マイクロソフト	-	Microsoft Windows Movie Maker における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3967	2011-01-14 15:36	2010-12-14	Show	GitHub Exploit DB Packet Storm

252084	7.2	危険	マイクロソフト	-	Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3338	2011-01-14 15:31	2010-12-14	Show	GitHub Exploit DB Packet Storm

252085	6.9	警告	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-94 コード・インジェクション	CVE-2010-3959	2011-01-14 15:27	2010-12-14	Show	GitHub Exploit DB Packet Storm

252086	5	警告	アップルサイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット	-	OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0212	2011-01-14 14:45	2010-06-30	Show	GitHub Exploit DB Packet Storm

252087	5	警告	アップルサイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット	-	OpenLDAP の slap_modrdn2mods 関数における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0211	2011-01-14 14:45	2010-06-30	Show	GitHub Exploit DB Packet Storm

252088	6.2	警告	サイバートラスト株式会社 VMware Todd C. Miller レッドハット	-	sudo における権限昇格の脆弱性	CWE-DesignError	CVE-2010-2956	2011-01-14 14:44	2010-09-7	Show	GitHub Exploit DB Packet Storm

252089	-	-	GNU Project VMware サイバートラスト株式会社レッドハット	-	glibc に権限昇格の脆弱性	-	CVE-2010-3847	2011-01-14 14:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

252090	7.8	危険	マイクロソフトアドビシステムズ日本電気	-	Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-2495	2011-01-14 14:33	2009-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251131	8.8	HIGH Network	tp-link	tl-wvr300_firmware tl-wvr302_firmware tl-wvr450_firmware tl-wvr450l_firmware tl-wvr450g_firmware tl-wvr458_firmware tl-wvr458l_firmware tl-wvr458p_firmware tl-wvr900g_firmware…	TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute arbitrary commands via shell metacharacters in the iface field of an admin/diagnostic command to cgi-bin/lu…	CWE-78 OS Command	CVE-2017-16957	2024-11-21 12:17	2017-11-27	Show	GitHub Exploit DB Packet Storm

251132	7.8	HIGH Local	tgsoft	vir.it_explorer	TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730008 DeviceIoContr…	CWE-476 NULL Pointer Dereference	CVE-2017-16948	2024-11-21 12:17	2017-11-27	Show	GitHub Exploit DB Packet Storm

251133	4.9	MEDIUM Network	misp	misp	The admin_edit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enable_password field, which allows admins to discover a hashed password by reading the audit log.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2017-16946	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251134	7.5	HIGH Network	exim debian	exim debian_linux	The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service (infinite loop and stack exhaustion) via vectors involving BDAT com…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-16944	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251135	9.8	CRITICAL Network	exim debian	exim debian_linux	The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BD…	CWE-416 Use After Free	CVE-2017-16943	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251136	6.5	MEDIUM Network	libsndfile_project	libsndfile	In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.	CWE-369 Divide By Zero	CVE-2017-16942	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251137	8.8	HIGH Network	octobercms	october	October CMS through 1.0.428 does not prevent use of .htaccess in themes, which allows remote authenticated users to execute arbitrary PHP code by downloading a theme ZIP archive from /backend/cms/the…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-16941	2024-11-21 12:17	2017-11-25	Show	GitHub Exploit DB Packet Storm

251138	7.8	HIGH Local	linux debian	linux_kernel debian_linux	The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCV…	CWE-416 Use After Free	CVE-2017-16939	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251139	7.8	HIGH Local	optipng_project	optipng	A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to cause a denial-of-service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolle…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-16938	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251140	6.5	MEDIUM Adjacent	tenda	ac9_firmware ac15_firmware ac18_firmware	Directory Traversal vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US…	CWE-22 Path Traversal	CVE-2017-16936	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm