Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252441	5	警告	アップル	-	Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1828	2010-11-25 15:17	2010-11-15	Show	GitHub Exploit DB Packet Storm

252442	4.3	警告	アップル	-	Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2010-1803	2010-11-25 15:16	2010-11-15	Show	GitHub Exploit DB Packet Storm

252443	7.5	危険	アップル	-	Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2010-1378	2010-11-25 15:15	2010-11-12	Show	GitHub Exploit DB Packet Storm

252444	4.9	警告	アップル	-	Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-0105	2010-11-25 15:15	2010-04-27	Show	GitHub Exploit DB Packet Storm

252445	9.3	危険	アップルアドビシステムズレッドハット	-	Adobe Flash の ActionScript の処理に脆弱性	CWE-94 コード・インジェクション	CVE-2010-0209	2010-11-25 15:14	2010-08-11	Show	GitHub Exploit DB Packet Storm

252446	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 CWE-noinfo	CVE-2009-3793	2010-11-25 15:13	2010-06-10	Show	GitHub Exploit DB Packet Storm

252447	6.8	警告	アップル GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU gzip における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0001	2010-11-25 15:12	2010-01-29	Show	GitHub Exploit DB Packet Storm

252448	2.6	注意	アップルサン・マイクロシステムズ Apache Software Foundation	-	Apache HTTP Server 用 mod_perl の Status.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0796	2010-11-25 15:12	2009-04-7	Show	GitHub Exploit DB Packet Storm

252449	6.8	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-2474	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

252450	4.3	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2473	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249961	5.5	MEDIUM Local	linux	linux_kernel	The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall and munlock…	CWE-20 Improper Input Validation	CVE-2017-18221	2024-11-21 12:19	2018-03-7	Show	GitHub Exploit DB Packet Storm

249962	8.8	HIGH Network	graphicsmagick	graphicsmagick	The ReadOneJNGImage and ReadJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 allow remote attackers to cause a denial of service (magick/blob.c CloseBlob use-after-free) or possibly have u…	CWE-416 Use After Free	CVE-2017-18220	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249963	6.5	MEDIUM Network	graphicsmagick debian	graphicsmagick debian_linux	An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service vi…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2017-18219	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249964	7.8	HIGH Local	linux	linux_kernel	In drivers/net/ethernet/hisilicon/hns/hns_enet.c in the Linux kernel before 4.13, local users can cause a denial of service (use-after-free and BUG) or possibly have unspecified other impact by lever…	CWE-416 Use After Free	CVE-2017-18218	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249965	6.1	MEDIUM Network	invoiceplane	invoiceplane	An issue was discovered in InvoicePlane before 1.5.5. It was observed that the Email address and Web address parameters are vulnerable to Cross Site Scripting, related to application/modules/clients/…	CWE-79 Cross-site Scripting	CVE-2017-18217	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249966	5.5	MEDIUM Local	linux	linux_kernel	In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service (NULL pointer dereference and BUG) because a required mutex is not used.	CWE-476 NULL Pointer Dereference	CVE-2017-18216	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249967	9.8	CRITICAL Network	xv_project opensuse	xv leap	xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.	CWE-787 Out-of-bounds Write	CVE-2017-18215	2024-11-21 12:19	2018-03-6	Show	GitHub Exploit DB Packet Storm

249968	7.5	HIGH Network	momentjs tenable	moment nessus	The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via a crafted date string, a different vulnerability than CVE-2016-4055.	CWE-400 Uncontrolled Resource Consumption	CVE-2017-18214	2024-11-21 12:19	2018-03-5	Show	GitHub Exploit DB Packet Storm

249969	7.2	HIGH Network	exponentcms	exponent_cms	In Exponent CMS before 2.4.1 Patch #6, certain admin users can elevate their privileges.	NVD-CWE-noinfo	CVE-2017-18213	2024-11-21 12:19	2018-03-4	Show	GitHub Exploit DB Packet Storm

249970	9.8	CRITICAL Network	jerryscript	jerryscript	An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_hex function in lit/lit-char-helpers.c via a RegExp("[\x0"); payload.	CWE-125 Out-of-bounds Read	CVE-2017-18212	2024-11-21 12:19	2018-03-2	Show	GitHub Exploit DB Packet Storm