Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252171 7.2 危険 VMware - 複数の VMware 製品の vmware-mount における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4296 2010-12-27 15:38 2010-12-2 Show GitHub Exploit DB Packet Storm
252172 6.9 警告 VMware - 複数の VMware 製品の vmware-mount における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-4295 2010-12-27 15:36 2010-12-2 Show GitHub Exploit DB Packet Storm
252173 9.3 危険 VMware - 複数の VMware 製品の VMnc メディアコーデック内にあるフレーム復元機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4294 2010-12-27 15:33 2010-12-2 Show GitHub Exploit DB Packet Storm
252174 2.1 注意 アップル - Windows 上で稼働する Apple QuickTime における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0530 2010-12-27 15:07 2010-12-9 Show GitHub Exploit DB Packet Storm
252175 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1508 2010-12-27 15:06 2010-12-9 Show GitHub Exploit DB Packet Storm
252176 9.3 危険 アップル - Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3800 2010-12-27 14:59 2010-12-9 Show GitHub Exploit DB Packet Storm
252177 9.3 危険 マイクロソフト - Microsoft Internet Explorer における無効なフラグ参照に起因する脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3962 2010-12-27 14:36 2010-11-4 Show GitHub Exploit DB Packet Storm
252178 10 危険 CA Technologies - CA PSFormX および CA WebScan ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-20
CWE-noinfo
CVE-2010-2193 2010-12-27 11:49 2010-06-8 Show GitHub Exploit DB Packet Storm
252179 2.6 注意 CA Technologies - CA eHealth Performance Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0640 2010-12-27 11:44 2010-02-24 Show GitHub Exploit DB Packet Storm
252180 9.3 危険 CA Technologies - CA eTrust PestPatrol の PestPatrol ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4225 2010-12-27 11:41 2009-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267441 6.1 MEDIUM
Network 		ibm business_process_manager Cross-site scripting (XSS) vulnerability in Process Portal in IBM Business Process Manager 8.5.0.x through 8.5.0.2, 8.5.5.x through 8.5.5.0, and 8.5.6.x through 8.5.6.2 allows remote attackers to inj… CWE-79
Cross-site Scripting 		CVE-2015-8524 2024-11-21 11:38 2016-02-29 Show GitHub Exploit DB Packet Storm
267442 9.8 CRITICAL
Network 		flexerasoftware flexnet_publisher Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute arbitrary code via a crafted packet with… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8277 2024-11-21 11:38 2016-02-24 Show GitHub Exploit DB Packet Storm
267443 9.1 CRITICAL
Network 		symantec encryption_management_server Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by leveraging console administrator access. CWE-78
OS Command  		CVE-2015-8151 2024-11-21 11:38 2016-02-19 Show GitHub Exploit DB Packet Storm
267444 7.8 HIGH
Local 		symantec encryption_management_server Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows local users to obtain root access by modifying a batch file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8150 2024-11-21 11:38 2016-02-19 Show GitHub Exploit DB Packet Storm
267445 7.5 HIGH
Network 		symantec encryption_management_server The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to cause a denial of service (heap memory corruption and service outage) via crafted request… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8149 2024-11-21 11:38 2016-02-19 Show GitHub Exploit DB Packet Storm
267446 7.5 HIGH
Network 		symantec encryption_management_server The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to obtain sensitive information about administrator accounts via a modified request. CWE-200
Information Exposure 		CVE-2015-8148 2024-11-21 11:38 2016-02-19 Show GitHub Exploit DB Packet Storm
267447 5.3 MEDIUM
Network 		swann swnvw-470cam_firmware
srnvw-470lcd_firmware 		Swann SRNVW-470LCD devices with firmware through 0114 and SWNVW-470CAM devices with firmware through 1022 allow remote attackers to watch live video by visiting an unspecified URL. NVD-CWE-Other
CVE-2015-8287 2024-11-21 11:38 2016-02-18 Show GitHub Exploit DB Packet Storm
267448 9.8 CRITICAL
Network 		zhuhai raysharp_firmware Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote attackers to obtain access via a session on TCP port 23 or 9000. CWE-254
 7PK - Security Features 		CVE-2015-8286 2024-11-21 11:38 2016-02-18 Show GitHub Exploit DB Packet Storm
267449 6.5 MEDIUM
Network 		cybozu office customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to cause a denial of service (excessive database locking) via a crafted CSV file, a different vulnerability than CVE-… CWE-20
 Improper Input Validation  		CVE-2015-8489 2024-11-21 11:38 2016-02-17 Show GitHub Exploit DB Packet Storm
267450 4.3 MEDIUM
Network 		cybozu office Cybozu Office 10.3.0 allows remote attackers to read image files via a crafted e-mail message, a different vulnerability than CVE-2015-8487. CWE-200
Information Exposure 		CVE-2015-8488 2024-11-21 11:38 2016-02-17 Show GitHub Exploit DB Packet Storm