Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252091	9.3	危険	サン・マイクロシステムズアドビシステムズ日本電気マイクロソフト OpenOffice.org Project	-	Microsoft Visual Studio の ATL におけるオブジェクトのインスタンス化処理に関する任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2493	2011-01-14 14:32	2009-07-28	Show	GitHub Exploit DB Packet Storm

252092	9.3	危険	マイクロソフトアドビシステムズ日本電気	-	Microsoft Visual Studio の ATL における未初期化オブジェクト処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0901	2011-01-14 14:31	2009-07-28	Show	GitHub Exploit DB Packet Storm

252093	6.9	警告	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3957	2011-01-13 16:22	2010-12-14	Show	GitHub Exploit DB Packet Storm

252094	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-94 コード・インジェクション	CVE-2010-3956	2011-01-13 16:19	2010-12-14	Show	GitHub Exploit DB Packet Storm

252095	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3346	2011-01-13 16:15	2010-12-14	Show	GitHub Exploit DB Packet Storm

252096	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3345	2011-01-13 16:11	2010-12-14	Show	GitHub Exploit DB Packet Storm

252097	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3343	2011-01-13 15:48	2010-12-14	Show	GitHub Exploit DB Packet Storm

252098	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3340	2011-01-13 15:43	2010-12-14	Show	GitHub Exploit DB Packet Storm

252099	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の Advanced Audio Coding におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4395	2011-01-12 15:29	2010-12-10	Show	GitHub Exploit DB Packet Storm

252100	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の RealPix におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4394	2011-01-12 15:23	2010-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308551	5.4	MEDIUM Network	dotcamp	ultimate_blocks	The Ultimate Blocks WordPress plugin before 3.2.2 does not validate and escape some of its block attributes before outputting them back in a page/post where the block is embed, which could allow use…	CWE-79 Cross-site Scripting	CVE-2024-8536	2024-10-4 03:16	2024-09-30	Show	GitHub Exploit DB Packet Storm

308552	7.5	HIGH Adjacent	alpsalpine	ilx-f509_firmware	Alpine Halo9 DecodeUTF7 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Al…	CWE-787 Out-of-bounds Write	CVE-2024-23935	2024-10-4 03:07	2024-09-28	Show	GitHub Exploit DB Packet Storm

308553	8.8	HIGH Adjacent	alpsalpine	ilx-f509_firmware	Alpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine…	CWE-416 Use After Free	CVE-2024-23923	2024-10-4 03:07	2024-09-28	Show	GitHub Exploit DB Packet Storm

308554	6.8	MEDIUM Physics	alpsalpine	ilx-f509_firmware	Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations…	CWE-78 OS Command	CVE-2024-23961	2024-10-4 03:06	2024-09-28	Show	GitHub Exploit DB Packet Storm

308555	4.6	MEDIUM Physics	alpsalpine	ilx-f509_firmware	Alpine Halo9 Improper Verification of Cryptographic Signature Vulnerability. This vulnerability allows physically present attackers to bypass signature validation mechanism on affected installations …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-23960	2024-10-4 03:06	2024-09-28	Show	GitHub Exploit DB Packet Storm

308556	6.8	MEDIUM Physics	alpsalpine	ilx-f509_firmware	Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installatio…	CWE-78 OS Command	CVE-2024-23924	2024-10-4 03:06	2024-09-28	Show	GitHub Exploit DB Packet Storm

308557	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tick/broadcast: Move per CPU pointer access into the atomic section The recent fix for making the take over of the broadcast time…	NVD-CWE-noinfo	CVE-2024-44968	2024-10-4 03:04	2024-09-5	Show	GitHub Exploit DB Packet Storm

308558	7.4	HIGH Adjacent	cisco	ios_xr	A vulnerability in the handling of specific Ethernet frames by Cisco IOS XR Software for various Cisco Network Convergence System (NCS) platforms could allow an unauthenticated, adjacent attacker to …	NVD-CWE-noinfo	CVE-2024-20317	2024-10-4 02:58	2024-09-12	Show	GitHub Exploit DB Packet Storm

308559	5.4	MEDIUM Network	cisco	catalyst_sd-wan_manager	A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting …	CWE-79 Cross-site Scripting	CVE-2024-20475	2024-10-4 02:49	2024-09-26	Show	GitHub Exploit DB Packet Storm

308560	8.0	HIGH Adjacent	autel	maxicharger_ac_elite_business_c50_firmware	Autel MaxiCharger AC Elite Business C50 BLE AppChargingControl Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitra…	CWE-787 Out-of-bounds Write	CVE-2024-23959	2024-10-4 02:42	2024-09-28	Show	GitHub Exploit DB Packet Storm