Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252571 4.9 警告 オラクル - Oracle Solaris および OpenSolaris における Kernel/X86 の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3517 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
252572 5.8 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3545 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
252573 6.3 警告 オラクル - Oracle Solaris における su の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3503 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
252574 9.3 危険 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット		 - FreeType 2 における CFF フォントの処理に脆弱性 CWE-119
バッファエラー 		CVE-2010-1797 2010-11-2 15:24 2010-08-9 Show GitHub Exploit DB Packet Storm
252575 6.6 警告 オラクル - Oracle Solaris における Live Upgrade の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3507 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
252576 10 危険 オラクル - Oracle Solaris における Scheduler の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3509 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
252577 4.3 警告 オラクル - Oracle Fusion Middleware の Forms コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2396 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
252578 4.3 警告 オラクル - Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2410 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
252579 4.3 警告 オラクル - Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2409 2010-11-1 15:40 2010-10-12 Show GitHub Exploit DB Packet Storm
252580 4.3 警告 オラクル - Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2395 2010-11-1 15:39 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255421 7.8 HIGH
Local 		openexif_project openexif The ExifImageFile::readDQT function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted j… CWE-125
Out-of-bounds Read 		CVE-2017-11116 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
255422 5.5 MEDIUM
Local 		openexif_project openexif The ExifJpegHUFFTable::deriveTable function in ExifHuffmanTable.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a cra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11115 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
255423 5.5 MEDIUM
Local 		twibright links The put_chars function in html_r.c in Twibright Links 2.14 allows remote attackers to cause a denial of service (buffer over-read) via a crafted HTML file. CWE-125
Out-of-bounds Read 		CVE-2017-11114 2024-11-21 12:07 2017-07-31 Show GitHub Exploit DB Packet Storm
255424 9.8 CRITICAL
Network 		glpi-project glpi SQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 via the start parameter. CWE-89
SQL Injection 		CVE-2017-11184 2024-11-21 12:07 2017-07-28 Show GitHub Exploit DB Packet Storm
255425 4.9 MEDIUM
Network 		glpi-project glpi front/backup.php in GLPI before 9.1.5 allows remote authenticated administrators to delete arbitrary files via a crafted file parameter. CWE-20
 Improper Input Validation  		CVE-2017-11183 2024-11-21 12:07 2017-07-28 Show GitHub Exploit DB Packet Storm
255426 6.1 MEDIUM
Network 		sap netweaver_portal Cross-site scripting (XSS) vulnerability in the DataArchivingService servlet in SAP NetWeaver Portal 7.4 allows remote attackers to inject arbitrary web script or HTML via the responsecode parameter … CWE-79
Cross-site Scripting 		CVE-2017-11460 2024-11-21 12:07 2017-07-26 Show GitHub Exploit DB Packet Storm
255427 9.8 CRITICAL
Network 		sap trex SAP TREX 7.10 allows remote attackers to (1) read arbitrary files via an fget command or (2) write to arbitrary files and consequently execute arbitrary code via an fdir command, aka SAP Security Not… CWE-94
Code Injection 		CVE-2017-11459 2024-11-21 12:07 2017-07-26 Show GitHub Exploit DB Packet Storm
255428 6.1 MEDIUM
Network 		sap netweaver_application_server_java Cross-site scripting (XSS) vulnerability in the ctcprotocol/Protocol servlet in SAP NetWeaver AS JAVA 7.3 allows remote attackers to inject arbitrary web script or HTML via the sessionID parameter, a… CWE-79
Cross-site Scripting 		CVE-2017-11458 2024-11-21 12:07 2017-07-26 Show GitHub Exploit DB Packet Storm
255429 6.5 MEDIUM
Network 		sap netweaver_application_server_java XML external entity (XXE) vulnerability in com.sap.km.cm.ice in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attac… CWE-611
XXE 		CVE-2017-11457 2024-11-21 12:07 2017-07-26 Show GitHub Exploit DB Packet Storm
255430 5.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		The dhcp_decode function in slirp/bootp.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) via a crafted DHCP options … CWE-125
Out-of-bounds Read 		CVE-2017-11434 2024-11-21 12:07 2017-07-26 Show GitHub Exploit DB Packet Storm