Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252371	4.3	警告	アップルターボリナックス FreeType Project	-	FreeType の bdf/bdflib.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3053	2010-12-2 16:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

252372	5	警告	アップル	-	Apple Mac OS X の Printing におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3784	2010-12-1 16:14	2010-11-16	Show	GitHub Exploit DB Packet Storm

252373	6.8	警告	アップル	-	Apple Mac OS X のパスワードサーバにおけるパスワードの認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3783	2010-12-1 16:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

252374	6.8	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2807	2010-12-1 16:00	2010-08-19	Show	GitHub Exploit DB Packet Storm

252375	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の t42_parse_sfnts 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2806	2010-12-1 15:58	2010-08-19	Show	GitHub Exploit DB Packet Storm

252376	6.8	警告	アップルターボリナックス FreeType Project レッドハットオラクル	-	FreeType の FT_Stream_EnterFrame 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2805	2010-12-1 15:55	2010-08-19	Show	GitHub Exploit DB Packet Storm

252377	5.1	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType の Ins_IUP 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2520	2010-12-1 15:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

252378	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2519	2010-12-1 15:27	2010-07-12	Show	GitHub Exploit DB Packet Storm

252379	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の gray_render_span 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2500	2010-12-1 15:26	2010-07-12	Show	GitHub Exploit DB Packet Storm

252380	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2499	2010-12-1 15:24	2010-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
288511	-	ibm	lotus_sametime	The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of shared links by leveraging meeting-attendance privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0537	2024-11-21 10:47	2013-11-9	Show	GitHub Exploit DB Packet Storm

288512	-	f5	nginx	The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive informati…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0337	2024-11-21 10:47	2013-10-27	Show	GitHub Exploit DB Packet Storm

288513	-	ibm	storwize_v7000_unified_software storwize_v7000_unified	IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 does not properly handle device files that are created with the NFS protocol but accessed with a non-NFS protocol, which allows remote authen…	CWE-20 Improper Input Validation	CVE-2013-0500	2024-11-21 10:47	2013-10-17	Show	GitHub Exploit DB Packet Storm

288514	-	ibm	infosphere_optim_data_growth_for_oracle_e-business_suite	Cross-site request forgery (CSRF) vulnerability in the Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to hijack the…	CWE-352 Origin Validation Error	CVE-2013-0580	2024-11-21 10:47	2013-10-10	Show	GitHub Exploit DB Packet Storm

288515	-	ibm	infosphere_optim_data_growth_for_oracle_e-business_suite	The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote attackers to impersonate arbitrary users by leveraging access to a legitimate user's…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0579	2024-11-21 10:47	2013-10-10	Show	GitHub Exploit DB Packet Storm

288516	-	ibm	infosphere_optim_data_growth_for_oracle_e-business_suite	The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to bypass intended access restrictions and create, modify, or de…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0577	2024-11-21 10:47	2013-10-10	Show	GitHub Exploit DB Packet Storm

288517	-	ibm	maximo_asset_management	SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 through 7.1.1.12 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-0451	2024-11-21 10:47	2013-10-1	Show	GitHub Exploit DB Packet Storm

288518	-	libarchive canonical opensuse fedoraproject freebsd	libarchive ubuntu_linux opensuse fedora freebsd	Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers …	CWE-189 Numeric Errors	CVE-2013-0211	2024-11-21 10:47	2013-10-1	Show	GitHub Exploit DB Packet Storm

288519	-	ibm	rational_clearquest	Cross-site request forgery (CSRF) vulnerability in the Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to hijack the au…	CWE-352 Origin Validation Error	CVE-2013-0598	2024-11-21 10:47	2013-09-28	Show	GitHub Exploit DB Packet Storm

288520	-	ibm	websphere_application_server	Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47 allows remote attackers to inject arbitrary web script or HTML via…	CWE-79 Cross-site Scripting	CVE-2013-0596	2024-11-21 10:47	2013-09-21	Show	GitHub Exploit DB Packet Storm