Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252681	5	警告	アップル ClamAV	-	ClamAV の libclamav/mspack.c における qtm_decompress 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1311	2010-09-8 15:52	2010-04-8	Show	GitHub Exploit DB Packet Storm

252682	5	警告	アップル	-	Apple Mac OS X の CFNetwork における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1800	2010-09-8 15:51	2010-08-25	Show	GitHub Exploit DB Packet Storm

252683	6.8	警告	アップル	-	Apple Mac OS X の Apple Type Services におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1808	2010-09-8 15:51	2010-08-25	Show	GitHub Exploit DB Packet Storm

252684	6.2	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo の secure path 機能における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1646	2010-09-8 15:50	2010-06-7	Show	GitHub Exploit DB Packet Storm

252685	6.9	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1163	2010-09-8 15:50	2010-04-16	Show	GitHub Exploit DB Packet Storm

252686	10	危険	ESET アップル ClamAV ソースネクスト	-	複数のアンチウィルス製品に脆弱性	CWE-noinfo 情報不足	CVE-2010-0098	2010-09-8 15:50	2010-04-13	Show	GitHub Exploit DB Packet Storm

252687	7.5	危険	The PHP Group アップル	-	PHP の safe_mode 実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1129	2010-09-8 15:49	2010-03-26	Show	GitHub Exploit DB Packet Storm

252688	4.4	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0427	2010-09-8 15:49	2010-02-25	Show	GitHub Exploit DB Packet Storm

252689	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM の subpage MMIO initialization 機能における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2784	2010-09-7 15:51	2010-08-19	Show	GitHub Exploit DB Packet Storm

252690	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0431	2010-09-7 15:50	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268881	9.8	CRITICAL Network	google	android	An issue was discovered on Samsung mobile devices with KK(4.4) and later software through 2015-05-13. There is a buffer overflow in datablock_write because the amount of received data is not validate…	CWE-120 Classic Buffer Overflow	CVE-2015-5524	2024-11-21 11:33	2020-04-11	Show	GitHub Exploit DB Packet Storm

268882	9.8	CRITICAL Network	lenovo	b50-10_firmware flex_2_pro-15_firmware edge_15_firmware flex_3-1470_firmware flex_3-1570_firmware flex_3-1120_firmware g40-80_firmware g50-80_firmware g50-80_touch_firmware	MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A buffer overflow vulnerability was reported, (fixed and publicly disclosed in 2015) in the Lenovo Service Engine (…	CWE-120 Classic Buffer Overflow	CVE-2015-5684	2024-11-21 11:33	2020-03-28	Show	GitHub Exploit DB Packet Storm

268883	8.8	HIGH Network	puppet	puppet_enterprise	Parts of the Puppet Enterprise Console 3.x were found to be susceptible to clickjacking and CSRF (Cross-Site Request Forgery) attacks. This would allow an attacker to redirect user input to an untrus…	CWE-352 CWE-1021 Origin Validation Error Improper Restriction of Rendered UI Layers or Frames	CVE-2015-5686	2024-11-21 11:33	2020-02-27	Show	GitHub Exploit DB Packet Storm

268884	9.8	CRITICAL Network	enorth	webpublisher_cms	SQL injection vulnerability in pub/m_pending_news/delete_pending_news.jsp in Enorth Webpublisher CMS allows remote attackers to execute arbitrary SQL commands via the cbNewsId parameter.	CWE-89 SQL Injection	CVE-2015-5617	2024-11-21 11:33	2020-02-13	Show	GitHub Exploit DB Packet Storm

268885	9.8	CRITICAL Network	golang redhat	go enterprise_linux openstack	The net/http library in net/http/transfer.go in Go before 1.4.3 does not properly parse HTTP headers, which allows remote attackers to conduct HTTP request smuggling attacks via a request that contai…	CWE-444 HTTP Request Smuggling	CVE-2015-5741	2024-11-21 11:33	2020-02-9	Show	GitHub Exploit DB Packet Storm

268886	9.8	CRITICAL Network	yokogawa	centum_cs_1000_firmware centum_cs_3000_firmware centum_cs_3000_entry_firmware centum_vp_firmware centum_vp_entry_firmware prosafe-rs_firmware exapilot exaquantum\/batch exaqua…	Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP …	CWE-787 Out-of-bounds Write	CVE-2015-5628	2024-11-21 11:33	2020-02-6	Show	GitHub Exploit DB Packet Storm

268887	9.8	CRITICAL Network	yokogawa	centum_cs_1000_firmware centum_cs_3000_firmware centum_cs_3000_entry_firmware centum_vp_firmware centum_vp_entry_firmware prosafe-rs_firmware exapilot exaquantum\/batch exaqua…	Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP …	CWE-787 Out-of-bounds Write	CVE-2015-5627	2024-11-21 11:33	2020-02-6	Show	GitHub Exploit DB Packet Storm

268888	9.8	CRITICAL Network	yokogawa	centum_cs_1000_firmware centum_cs_3000_firmware centum_cs_3000_entry_firmware centum_vp_firmware centum_vp_entry_firmware prosafe-rs_firmware exapilot exaquantum\/batch exaqua…	Stack-based buffer overflow in Yokogawa CENTUM CS 1000 R3.08.70 and earlier, CENTUM CS 3000 R3.09.50 and earlier, CENTUM CS 3000 Entry R3.09.50 and earlier, CENTUM VP R5.04.20 and earlier, CENTUM VP …	CWE-787 Out-of-bounds Write	CVE-2015-5626	2024-11-21 11:33	2020-02-6	Show	GitHub Exploit DB Packet Storm

268889	8.8	HIGH Network	private_only_project	private_only	Multiple cross-site request forgery (CSRF) vulnerabilities in the Private Only plugin 3.5.1 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) a…	CWE-352 Origin Validation Error	CVE-2015-5483	2024-11-21 11:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

268890	6.5	MEDIUM Network	qemu fedoraproject arista	qemu fedora eos	Buffer overflow in the send_control_msg function in hw/char/virtio-serial-bus.c in QEMU before 2.4.0 allows guest users to cause a denial of service (QEMU process crash) via a crafted virtio control …	CWE-120 Classic Buffer Overflow	CVE-2015-5745	2024-11-21 11:33	2020-01-24	Show	GitHub Exploit DB Packet Storm