Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252731 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1898 2010-09-1 15:16 2010-08-10 Show GitHub Exploit DB Packet Storm
252732 6.8 警告 マイクロソフト - Microsoft Windows のカーネルにおける権限を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1889 2010-09-1 15:16 2010-08-10 Show GitHub Exploit DB Packet Storm
252733 6.8 警告 マイクロソフト - Microsoft Windows XP のカーネルにおける権限を取得される脆弱性 CWE-362
競合状態 		CVE-2010-1888 2010-09-1 15:16 2010-08-10 Show GitHub Exploit DB Packet Storm
252734 9.3 危険 マイクロソフト - Microsoft Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0019 2010-09-1 15:15 2010-08-10 Show GitHub Exploit DB Packet Storm
252735 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox の layout/generic/nsObjectFrame.cpp における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2755 2010-09-1 14:54 2010-07-20 Show GitHub Exploit DB Packet Storm
252736 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のローカルプログラムを実行させられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1240 2010-09-1 14:52 2010-04-5 Show GitHub Exploit DB Packet Storm
252737 9.3 危険 マイクロソフト - Microsoft Windows の Secure Channel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2566 2010-08-31 16:46 2010-08-10 Show GitHub Exploit DB Packet Storm
252738 9.3 危険 マイクロソフト - Microsoft XML Core Services における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2561 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
252739 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2560 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
252740 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2559 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251911 5.5 MEDIUM
Local 		infocuscorp infocus_mondopad Infocus Mondopad 2.2.08 is vulnerable to a Hashed Credential Disclosure vulnerability. The attacker provides a crafted Microsoft Office document containing a link that has a UNC pathname associated w… CWE-200
Information Exposure 		CVE-2017-14971 2024-11-21 12:13 2017-10-9 Show GitHub Exploit DB Packet Storm
251912 5.5 MEDIUM
Local 		lame_project lame LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fill_buffer in libmp3lame/util.c, related to lame_encode_buffer_sample_t in libmp3lame/… CWE-125
Out-of-bounds Read 		CVE-2017-15045 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
251913 5.9 MEDIUM
Network 		golang go An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. T… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2017-15042 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
251914 9.8 CRITICAL
Network 		golang
debian
redhat 		go
debian_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_eus
enterprise_linux_tus
developer_tools 		Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but … NVD-CWE-noinfo
CVE-2017-15041 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
251915 8.1 HIGH
Network 		freebsd freebsd In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition with a resultant out-of-bounds read, because it can cause t2p->t_name strings to lack a final '\0' cha… CWE-362
CWE-125
Race Condition
Out-of-bounds Read 		CVE-2017-15037 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
251916 7.5 HIGH
Network 		emtec pyrobatchftp EmTec PyroBatchFTP before 3.18 allows remote servers to cause a denial of service (application crash). CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-15035 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
251917 7.5 HIGH
Network 		imagemagick
canonical 		imagemagick
ubuntu_linux 		ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-15033 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
251918 9.8 CRITICAL
Network 		imagemagick
canonical 		imagemagick
ubuntu_linux 		ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-15032 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
251919 5.5 MEDIUM
Local 		gnu binutils decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (divide-by-zero error … CWE-369
 Divide By Zero 		CVE-2017-15025 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
251920 5.5 MEDIUM
Local 		gnu binutils find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite r… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2017-15024 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm