Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252301	4.3	警告	freedesktop.org レッドハット	-	Poppler の PDF パーサ内にある poppler/Function.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3703	2010-12-13 16:04	2010-11-5	Show	GitHub Exploit DB Packet Storm

252302	8.3	危険	Linux レッドハット	-	Linux kernel の sctp_auth_asoc_get_hmac 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3705	2010-12-13 15:57	2010-10-20	Show	GitHub Exploit DB Packet Storm

252303	6.6	警告	Linux レッドハット	-	Linux kernel の pkt_find_dev_from_minor 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-3437	2010-12-13 15:41	2010-10-4	Show	GitHub Exploit DB Packet Storm

252304	7.2	危険	Linux レッドハット	-	x86_64 プラットフォーム上で稼動する Linux kernel の IA32 システムコールエミュレーション機能における権限昇格の脆弱性	CWE-DesignError	CVE-2010-3301	2010-12-13 15:29	2010-09-22	Show	GitHub Exploit DB Packet Storm

252305	7.2	危険	Linux レッドハット	-	Linux kernel の niu_get_ethtool_tcam_all 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3084	2010-12-10 15:24	2010-09-29	Show	GitHub Exploit DB Packet Storm

252306	3.3	注意	Linux レッドハット	-	Linux kernel の net/wireless/wext-compat.c 内にある cfg80211_wext_giwessid 関数における重要な情報を取得される脆弱性	CWE-189 数値処理の問題	CVE-2010-2955	2010-12-10 15:13	2010-09-8	Show	GitHub Exploit DB Packet Storm

252307	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-1791	2010-12-10 14:57	2010-07-30	Show	GitHub Exploit DB Packet Storm

252308	9.3	危険	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1781	2010-12-10 14:41	2010-09-8	Show	GitHub Exploit DB Packet Storm

252309	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1771	2010-12-10 14:40	2010-06-10	Show	GitHub Exploit DB Packet Storm

252310	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1770	2010-12-10 14:39	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269931	5.3	MEDIUM Network	mantisbt	mantisbt	The "Project Documentation" feature in MantisBT 1.2.19 and earlier, when the threshold to access files ($g_view_proj_doc_threshold) is set to ANYBODY, allows remote authenticated users to download at…	CWE-200 Information Exposure	CVE-2015-5059	2024-11-21 11:32	2017-08-1	Show	GitHub Exploit DB Packet Storm

269932	6.7	MEDIUM Local	vmware	tools	VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privil…	CWE-362 Race Condition	CVE-2015-5191	2024-11-21 11:32	2017-07-29	Show	GitHub Exploit DB Packet Storm

269933	5.5	MEDIUM Local	fedoraproject opensuse_project opensuse jasper_project	fedora leap opensuse jasper	Use-after-free vulnerability in the mif_process_cmpt function in libjasper/mif/mif_cod.c in the JasPer JPEG-2000 library before 1.900.2 allows remote attackers to cause a denial of service (crash) vi…	CWE-416 Use After Free	CVE-2015-5221	2024-11-21 11:32	2017-07-26	Show	GitHub Exploit DB Packet Storm

269934	6.5	MEDIUM Network	candlepinproject	candlepin	Candlepin allows remote attackers to obtain sensitive information by obtaining Java exception statements as a result of excessive web traffic.	CWE-200 CWE-399 Information Exposure Resource Management Errors	CVE-2015-5187	2024-11-21 11:32	2017-07-26	Show	GitHub Exploit DB Packet Storm

269935	7.5	HIGH Network	fedoraproject suse opensuse redhat debian canonical ntp	fedora linux_enterprise_server manager_proxy linux_enterprise_debuginfo linux_enterprise_software_development_kit manager openstack_cloud linux_enterprise_desktop leap open…	The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to…	CWE-361 7PK - Time and State	CVE-2015-5300	2024-11-21 11:32	2017-07-21	Show	GitHub Exploit DB Packet Storm

269936	7.5	HIGH Network	fedoraproject suse redhat debian canonical ntp novell opensuse siemens oracle	fedora manager_proxy linux_enterprise_debuginfo manager linux_enterprise_server openstack_cloud enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server	The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infin…	CWE-704 Incorrect Type Conversion or Cast	CVE-2015-5219	2024-11-21 11:32	2017-07-21	Show	GitHub Exploit DB Packet Storm

269937	7.5	HIGH Network	fedoraproject redhat debian canonical ntp	fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node debian_linux ubuntu_linux ntp	ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled …	CWE-20 Improper Input Validation	CVE-2015-5195	2024-11-21 11:32	2017-07-21	Show	GitHub Exploit DB Packet Storm

269938	7.5	HIGH Network	fedoraproject suse redhat debian canonical ntp	fedora manager_proxy linux_enterprise_debuginfo manager linux_enterprise_server openstack_cloud enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server	The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.	CWE-20 Improper Input Validation	CVE-2015-5194	2024-11-21 11:32	2017-07-21	Show	GitHub Exploit DB Packet Storm

269939	8.1	HIGH Network	theforeman	foreman	Foreman after 1.1 and before 1.9.0-RC1 does not redirect HTTP requests to HTTPS when the require_ssl setting is set to true, which allows remote attackers to obtain user credentials via a man-in-the-…	CWE-200 Information Exposure	CVE-2015-5152	2024-11-21 11:32	2017-07-17	Show	GitHub Exploit DB Packet Storm

269940	7.5	HIGH Network	elasticsearch elastic	logstash	Logstash 1.5.x before 1.5.3 and 1.4.x before 1.4.4 allows remote attackers to read communications between Logstash Forwarder agent and Logstash server.	CWE-200 Information Exposure	CVE-2015-5378	2024-11-21 11:32	2017-06-28	Show	GitHub Exploit DB Packet Storm