Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252371	4.3	警告	アップルターボリナックス FreeType Project	-	FreeType の bdf/bdflib.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3053	2010-12-2 16:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

252372	5	警告	アップル	-	Apple Mac OS X の Printing におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3784	2010-12-1 16:14	2010-11-16	Show	GitHub Exploit DB Packet Storm

252373	6.8	警告	アップル	-	Apple Mac OS X のパスワードサーバにおけるパスワードの認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3783	2010-12-1 16:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

252374	6.8	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2807	2010-12-1 16:00	2010-08-19	Show	GitHub Exploit DB Packet Storm

252375	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の t42_parse_sfnts 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2806	2010-12-1 15:58	2010-08-19	Show	GitHub Exploit DB Packet Storm

252376	6.8	警告	アップルターボリナックス FreeType Project レッドハットオラクル	-	FreeType の FT_Stream_EnterFrame 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2805	2010-12-1 15:55	2010-08-19	Show	GitHub Exploit DB Packet Storm

252377	5.1	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType の Ins_IUP 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2520	2010-12-1 15:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

252378	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2519	2010-12-1 15:27	2010-07-12	Show	GitHub Exploit DB Packet Storm

252379	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の gray_render_span 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2500	2010-12-1 15:26	2010-07-12	Show	GitHub Exploit DB Packet Storm

252380	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2499	2010-12-1 15:24	2010-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256441	8.8	HIGH Network	jenkins	role-based_authorization_strategy	Role-based Authorization Strategy Plugin was not requiring requests to its API be sent via POST, thereby opening itself to Cross-Site Request Forgery attacks. This allowed attackers to add administra…	CWE-352 Origin Validation Error	CVE-2017-1000090	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256442	5.3	MEDIUM Network	jenkins	pipeline\	Builds in Jenkins are associated with an authentication that controls the permissions that the build has to interact with other elements in Jenkins. The Pipeline: Build Step Plugin did not check the …	CWE-276 Incorrect Default Permissions	CVE-2017-1000089	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256443	5.4	MEDIUM Network	jenkins	sidebar_link	The Sidebar Link plugin allows users able to configure jobs, views, and agents to add entries to the sidebar of these objects. There was no input validation, which meant users were able to use javasc…	CWE-79 Cross-site Scripting	CVE-2017-1000088	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256444	4.3	MEDIUM Network	jenkins	github_branch_source	GitHub Branch Source provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use. This functionality did not check permissions, allowing any use…	CWE-200 Information Exposure	CVE-2017-1000087	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256445	8.0	HIGH Network	jenkins	periodic_backup	The Periodic Backup Plugin did not perform any permission checks, allowing any user with Overall/Read access to change its settings, trigger backups, restore backups, download backups, and also delet…	CWE-862 Missing Authorization	CVE-2017-1000086	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256446	6.5	MEDIUM Network	jenkins	parameterized_trigger	Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized Trigger Plugin did not check the build authentication it was running as and allowed triggering any other project i…	CWE-276 Incorrect Default Permissions	CVE-2017-1000084	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256447	6.5	MEDIUM Network	jenkins	subversion	Subversion Plugin connects to a user-specified Subversion repository as part of form validation (e.g. to retrieve a list of tags). This functionality improperly checked permissions, allowing any user…	CWE-352 Origin Validation Error	CVE-2017-1000085	2024-11-21 12:04	2017-10-5	Show	GitHub Exploit DB Packet Storm

256448	5.5	MEDIUM Local	linux	linux_kernel	The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service (assertion failure, and hypervisor hang or crash) via an out-of bounds guest_irq value, related…	CWE-20 CWE-617 Improper Input Validation Reachable Assertion	CVE-2017-1000252	2024-11-21 12:04	2017-09-26	Show	GitHub Exploit DB Packet Storm

256449	7.5	HIGH Network	redhat	pagure	Pagure 3.3.0 and earlier is vulnerable to loss of confidentially due to improper authorization	CWE-862 Missing Authorization	CVE-2017-1002151	2024-11-21 12:04	2017-09-14	Show	GitHub Exploit DB Packet Storm

256450	6.1	MEDIUM Network	fedoraproject	python-fedora	python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF protection	CWE-601 Open Redirect	CVE-2017-1002150	2024-11-21 12:04	2017-09-14	Show	GitHub Exploit DB Packet Storm