Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252141	6.4	警告	マイクロソフト	-	複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性	CWE-287 不適切な認証	CVE-2011-0091	2011-03-7 15:08	2011-02-8	Show	GitHub Exploit DB Packet Storm

252142	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性	CWE-310 暗号の問題	CVE-2011-0043	2011-03-7 15:05	2011-02-8	Show	GitHub Exploit DB Packet Storm

252143	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0090	2011-03-7 15:03	2011-02-8	Show	GitHub Exploit DB Packet Storm

252144	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0089	2011-03-7 15:00	2011-02-8	Show	GitHub Exploit DB Packet Storm

252145	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0088	2011-03-7 14:57	2011-02-8	Show	GitHub Exploit DB Packet Storm

252146	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0087	2011-03-7 14:54	2011-02-8	Show	GitHub Exploit DB Packet Storm

252147	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0086	2011-03-7 14:52	2011-02-8	Show	GitHub Exploit DB Packet Storm

252148	7.2	危険	マイクロソフト	-	Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2011-0045	2011-03-7 14:49	2011-02-8	Show	GitHub Exploit DB Packet Storm

252149	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性	CWE-287 不適切な認証	CVE-2011-0039	2011-03-7 14:47	2011-02-8	Show	GitHub Exploit DB Packet Storm

252150	6.8	警告	OTRS プロジェクト	-	OTRS における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0456	2011-03-7 12:02	2011-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273431	-	unzoo	unzoo	unzoo allows remote attackers to cause a denial of service (infinite loop and resource consumption) via unspecified vectors to the (1) ExtrArch or (2) ListArch function, related to pointer handling.	CWE-399 Resource Management Errors	CVE-2015-1846	2024-11-21 11:26	2015-05-20	Show	GitHub Exploit DB Packet Storm

273432	-	unzoo	unzoo	Buffer overflow in the EntrReadArch function in unzoo might allow remote attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1845	2024-11-21 11:26	2015-05-20	Show	GitHub Exploit DB Packet Storm

273433	-	powerdns fedoraproject	authoritative fedora recursor	The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows r…	CWE-399 Resource Management Errors	CVE-2015-1868	2024-11-21 11:26	2015-05-19	Show	GitHub Exploit DB Packet Storm

273434	-	fedora redhat	pacemaker_configuration_system enterprise_linux_resilient_storage_eus enterprise_linux_high_availability_eus enterprise_linux_high_availability enterprise_linux_resilient_storage	The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its t…	CWE-310 Cryptographic Issues	CVE-2015-1848	2024-11-21 11:26	2015-05-14	Show	GitHub Exploit DB Packet Storm

273435	-	canonical clamav	ubuntu_linux clamav	The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file.	CWE-399 Resource Management Errors	CVE-2015-2170	2024-11-21 11:26	2015-05-13	Show	GitHub Exploit DB Packet Storm

273436	-	fortinet	fortios	Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2015-1880	2024-11-21 11:26	2015-05-13	Show	GitHub Exploit DB Packet Storm

273437	-	fedoraproject digia qt	fedora qt	Multiple buffer overflows in gui/image/qgifhandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault) and possib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1860	2024-11-21 11:26	2015-05-13	Show	GitHub Exploit DB Packet Storm

273438	-	fedoraproject digia qt	fedora qt	Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fa…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1859	2024-11-21 11:26	2015-05-13	Show	GitHub Exploit DB Packet Storm

273439	-	digia qt fedoraproject	qt fedora	Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1858	2024-11-21 11:26	2015-05-13	Show	GitHub Exploit DB Packet Storm

273440	-	ibm	rational_license_key_server	The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4 before 8.1.4.7 allows remote authenticated users to read cookies via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-1907	2024-11-21 11:26	2015-05-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed