Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252571 9 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスの WebVPN 実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4680 2011-02-24 16:28 2011-01-7 Show GitHub Exploit DB Packet Storm
252572 7.8 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4679 2011-02-24 16:26 2011-01-7 Show GitHub Exploit DB Packet Storm
252573 7.5 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4678 2011-02-24 16:24 2011-01-7 Show GitHub Exploit DB Packet Storm
252574 7.2 危険 Google - Open Handset Alliance Android の showLog 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0608 2011-02-24 14:42 2009-02-17 Show GitHub Exploit DB Packet Storm
252575 7.2 危険 Google - Open Handset Alliance Android の malloc_leak.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0607 2011-02-24 14:40 2009-02-17 Show GitHub Exploit DB Packet Storm
252576 4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3681 2011-02-24 14:29 2010-07-6 Show GitHub Exploit DB Packet Storm
252577 4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3680 2011-02-24 14:27 2010-07-9 Show GitHub Exploit DB Packet Storm
252578 9.3 危険 マイクロソフト - Microsoft Windows にバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-3970 2011-02-23 15:27 2011-01-6 Show GitHub Exploit DB Packet Storm
252579 10 危険 マイクロソフト - Microsoft IIS FTP サーバにメモリ破損の脆弱性 CWE-119
バッファエラー 		CVE-2010-3972 2011-02-23 15:23 2010-12-24 Show GitHub Exploit DB Packet Storm
252580 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の EScript.api プラグインにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-4091 2011-02-23 15:22 2010-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310061 5.4 MEDIUM
Network 		concretecms concrete_cms Concrete CMS versions 9 through 9.3.3 and versions below 8.5.19 are vulnerable to stored XSS in the calendar event addition feature because the calendar event name was not sanitized on output. Users … CWE-79
Cross-site Scripting 		CVE-2024-7398 2024-10-1 01:12 2024-09-25 Show GitHub Exploit DB Packet Storm
310062 4.8 MEDIUM
Network 		concretecms concrete_cms Concrete CMS versions 9.0.0 to 9.3.3 and below 8.5.19 are vulnerable to Stored XSS in Image Editor Background Color.  A rogue admin could add malicious code to the Thumbnails/Add-Type. The Concrete C… CWE-79
Cross-site Scripting 		CVE-2024-8291 2024-10-1 00:59 2024-09-25 Show GitHub Exploit DB Packet Storm
310063 2.7 LOW
Network 		github enterprise_server An improper privilege management vulnerability allowed arbitrary workflows to be committed using an improperly scoped PAT through the use of nested tags. This vulnerability affected all versions of G… NVD-CWE-noinfo
CVE-2024-8263 2024-10-1 00:57 2024-09-24 Show GitHub Exploit DB Packet Storm
310064 7.5 HIGH
Network 		ibm aspera_console IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerabilit… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2022-43845 2024-10-1 00:53 2024-09-25 Show GitHub Exploit DB Packet Storm
310065 4.9 MEDIUM
Network 		zyxel wx5600-t0_firmware
wx3401-b0_firmware
wx3100-t0_firmware
scr50axe_firmware
px3321-t1_firmware
pm7300-t0_firmware
pm5100-t0_firmware
pm3100-t0_firmware
ax7501-b1_firmware
vm… 		An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated at… NVD-CWE-noinfo
CVE-2024-38268 2024-10-1 00:52 2024-09-24 Show GitHub Exploit DB Packet Storm
310066 4.9 MEDIUM
Network 		zyxel wx5600-t0_firmware
wx3401-b0_firmware
wx3100-t0_firmware
scr50axe_firmware
px3321-t1_firmware
pm7300-t0_firmware
pm5100-t0_firmware
pm3100-t0_firmware
ax7501-b1_firmware
vm… 		An improper restriction of operations within the bounds of a memory buffer in the IPv6 address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated a… NVD-CWE-noinfo
CVE-2024-38267 2024-10-1 00:52 2024-09-24 Show GitHub Exploit DB Packet Storm
310067 4.9 MEDIUM
Network 		zyxel wx5600-t0_firmware
wx3401-b0_firmware
wx3100-t0_firmware
scr50axe_firmware
px3321-t1_firmware
pm7300-t0_firmware
pm5100-t0_firmware
pm3100-t0_firmware
ax7501-b1_firmware
vm… 		An improper restriction of operations within the bounds of a memory buffer in the USB file-sharing handler of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authentica… NVD-CWE-noinfo
CVE-2024-38269 2024-10-1 00:51 2024-09-24 Show GitHub Exploit DB Packet Storm
310068 8.0 HIGH
Network 		ibm aspera_console IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a CSV injection vulnerability. By persuading a victim to open a s… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2021-38963 2024-10-1 00:48 2024-09-25 Show GitHub Exploit DB Packet Storm
310069 6.8 MEDIUM
Physics 		sony xav-ax5500_firmware Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installa… CWE-120
Classic Buffer Overflow 		CVE-2024-23972 2024-10-1 00:37 2024-09-24 Show GitHub Exploit DB Packet Storm
310070 6.8 MEDIUM
Physics 		sony xav-ax5500_firmware Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2024-23922 2024-10-1 00:37 2024-09-24 Show GitHub Exploit DB Packet Storm