Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252361	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3335	2010-12-6 15:36	2010-11-9	Show	GitHub Exploit DB Packet Storm

252362	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3334	2010-12-6 15:30	2010-11-9	Show	GitHub Exploit DB Packet Storm

252363	4.3	警告	Zope Foundation	-	Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-3495	2010-12-6 15:20	2010-10-19	Show	GitHub Exploit DB Packet Storm

252364	4.3	警告	マイクロソフト	-	複数の Microsoft 製品の toStaticHTML 関数および SafeHTML 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3324	2010-12-3 14:05	2010-10-12	Show	GitHub Exploit DB Packet Storm

252365	6.8	警告	アップル	-	Apple Mac OS X の xar におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3798	2010-12-3 13:13	2010-11-16	Show	GitHub Exploit DB Packet Storm

252366	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3797	2010-12-3 13:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

252367	4.3	警告	アップル	-	Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3796	2010-12-3 13:10	2010-11-16	Show	GitHub Exploit DB Packet Storm

252368	6	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスレッドハット	-	PostgreSQL の PL/perl および PL/Tcl 実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3433	2010-12-2 17:11	2010-10-4	Show	GitHub Exploit DB Packet Storm

252369	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2808	2010-12-2 17:08	2010-08-19	Show	GitHub Exploit DB Packet Storm

252370	5	警告	アップルサイバートラスト株式会社 FreeType Project ターボリナックスレッドハット	-	FreeType の Standard Encoding Accented Character の呼び出しにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3054	2010-12-2 16:34	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305571	7.8	HIGH Local	autodesk	autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d	A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a cra…	CWE-125 Out-of-bounds Read	CVE-2024-8588	2024-11-2 01:16	2024-10-30	Show	GitHub Exploit DB Packet Storm

305572	8.8	HIGH Network	tenda	rx9_pro_firmware	A vulnerability was found in Tenda RX9 Pro 22.03.02.20. It has been rated as critical. This issue affects the function sub_424CE0 of the file /goform/setMacFilterCfg of the component POST Request Han…	CWE-787 Out-of-bounds Write	CVE-2024-10351	2024-11-2 01:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

305573	6.1	MEDIUM Network	microchip	timeprovider_4100_firmware	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Microchip TimeProvider 4100 allows XSS Through HTTP Headers.This issue affects TimeProvider 4100: from 1.0.	CWE-601 Open Redirect	CVE-2024-43683	2024-11-2 01:15	2024-10-5	Show	GitHub Exploit DB Packet Storm

305574	7.5	HIGH Network	mayurik	petrol_pump_management	A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajax_p…	CWE-89 SQL Injection	CVE-2024-10380	2024-11-2 01:11	2024-10-25	Show	GitHub Exploit DB Packet Storm

305575	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: fix uninitialized pointer free in add_inode_ref() The add_inode_ref() function does not initialize the "name" struct when …	CWE-824 Access of Uninitialized Pointer	CVE-2024-50088	2024-11-2 01:05	2024-10-29	Show	GitHub Exploit DB Packet Storm

305576	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Call iso_exit() on module unload If iso_init() has been called, iso_exit() must be called on module unload. Without th…	NVD-CWE-noinfo	CVE-2024-50078	2024-11-2 01:01	2024-10-29	Show	GitHub Exploit DB Packet Storm

305577	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix multiple init when debugfs is disabled If bt_debugfs is not created successfully, which happens if either CON…	NVD-CWE-noinfo	CVE-2024-50077	2024-11-2 01:00	2024-10-29	Show	GitHub Exploit DB Packet Storm

305578	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xhci: tegra: fix checked USB2 port number If USB virtualizatoin is enabled, USB2 ports are shared between all Virtual Functions. …	NVD-CWE-noinfo	CVE-2024-50075	2024-11-2 00:51	2024-10-29	Show	GitHub Exploit DB Packet Storm

305579	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux BUG: KASAN: slab-use-after-free in gsm_cleanup_mux+0x77b/0x7b0 drivers/tty/n_gs…	CWE-416 Use After Free	CVE-2024-50073	2024-11-2 00:44	2024-10-29	Show	GitHub Exploit DB Packet Storm

305580	-		-	-	An issue was discovered in Ollama before 0.1.46. It exposes which files exist on the server on which it is deployed via path traversal in the api/push route.	-	CVE-2024-39722	2024-11-2 00:35	2024-11-1	Show	GitHub Exploit DB Packet Storm