Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252831 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
252832 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
252833 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
252834 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
252835 6.9 警告 マイクロソフト - Microsoft Windows における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3966 2011-01-14 15:42 2010-12-14 Show GitHub Exploit DB Packet Storm
252836 6.9 警告 マイクロソフト - Windows Media Encoder における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3965 2011-01-14 15:39 2010-12-14 Show GitHub Exploit DB Packet Storm
252837 6.9 警告 マイクロソフト - Microsoft Windows Movie Maker における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3967 2011-01-14 15:36 2010-12-14 Show GitHub Exploit DB Packet Storm
252838 7.2 危険 マイクロソフト - Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3338 2011-01-14 15:31 2010-12-14 Show GitHub Exploit DB Packet Storm
252839 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3959 2011-01-14 15:27 2010-12-14 Show GitHub Exploit DB Packet Storm
252840 5 警告 アップル
サイバートラスト株式会社
OpenLDAP Foundation
ターボリナックス
VMware
レッドハット		 - OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0212 2011-01-14 14:45 2010-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247691 4.3 MEDIUM
Network 		plone plone Plone 4.x through 4.3.11 and 5.x through 5.0.6 allow remote attackers to bypass a sandbox protection mechanism and obtain sensitive information by leveraging the Python string format method. CWE-134
Use of Externally-Controlled Format String 		CVE-2017-5524 2024-11-21 12:27 2017-03-24 Show GitHub Exploit DB Packet Storm
247692 7.5 HIGH
Network 		qnap qts QNAP QTS before 4.2.4 Build 20170313 allows local users to obtain sensitive Domain Administrator password information by reading data in an XOR format within the /etc/config/uLinux.conf configuration… CWE-200
Information Exposure 		CVE-2017-5227 2024-11-21 12:27 2017-03-24 Show GitHub Exploit DB Packet Storm
247693 7.8 HIGH
Local 		firejail_project firejail Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument. CWE-269
 Improper Privilege Management 		CVE-2017-5207 2024-11-21 12:27 2017-03-24 Show GitHub Exploit DB Packet Storm
247694 9.0 CRITICAL
Network 		firejail_project firejail Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument. NVD-CWE-noinfo
CVE-2017-5206 2024-11-21 12:27 2017-03-24 Show GitHub Exploit DB Packet Storm
247695 6.7 MEDIUM
Local 		avast internet_security
pro_antivirus
free_antivirus
premier 		Code injection vulnerability in Avast Premier 12.3 (and earlier), Internet Security 12.3 (and earlier), Pro Antivirus 12.3 (and earlier), and Free Antivirus 12.3 (and earlier) allows a local attacker… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-5567 2024-11-21 12:27 2017-03-22 Show GitHub Exploit DB Packet Storm
247696 6.7 MEDIUM
Local 		avg internet_security
ultimate
anti-virus 		Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG Internet Security 17.1 (and earlier), and AVG AntiVirus FREE 17.1 (and earlier) allows a local attacker to bypass a self-protectio… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-5566 2024-11-21 12:27 2017-03-22 Show GitHub Exploit DB Packet Storm
247697 6.7 MEDIUM
Local 		trendmicro premium_security
antivirus\+
internet_security
maximum_security 		Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet Security 11.0 (and earlier), and Antivirus+ Security 11.0 (and earlier) allows a local attacker to bypass a s… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-5565 2024-11-21 12:27 2017-03-22 Show GitHub Exploit DB Packet Storm
247698 5.5 MEDIUM
Local 		jasper_project jasper The jas_matrix_asl function in jas_seq.c in JasPer 1.900.27 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted image. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5505 2024-11-21 12:27 2017-03-17 Show GitHub Exploit DB Packet Storm
247699 9.8 CRITICAL
Network 		debian
osgeo 		debian_linux
mapserver 		Stack-based buffer overflow in MapServer before 6.0.6, 6.2.x before 6.2.4, 6.4.x before 6.4.5, and 7.0.x before 7.0.4 allows remote attackers to cause a denial of service (crash) or execute arbitrary… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5522 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
247700 7.1 HIGH
Local 		virglrenderer_project virglrenderer The parse_instruction function in gallium/auxiliary/tgsi/tgsi_text.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds array access and process cra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5580 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm