Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252941	6.9	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1163	2010-09-8 15:50	2010-04-16	Show	GitHub Exploit DB Packet Storm

252942	10	危険	ESET アップル ClamAV ソースネクスト	-	複数のアンチウィルス製品に脆弱性	CWE-noinfo 情報不足	CVE-2010-0098	2010-09-8 15:50	2010-04-13	Show	GitHub Exploit DB Packet Storm

252943	7.5	危険	The PHP Group アップル	-	PHP の safe_mode 実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1129	2010-09-8 15:49	2010-03-26	Show	GitHub Exploit DB Packet Storm

252944	4.4	警告	サイバートラスト株式会社 Todd C. Miller ターボリナックスレッドハット	-	sudo における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0427	2010-09-8 15:49	2010-02-25	Show	GitHub Exploit DB Packet Storm

252945	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM の subpage MMIO initialization 機能における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2784	2010-09-7 15:51	2010-08-19	Show	GitHub Exploit DB Packet Storm

252946	6.6	警告	サイバートラスト株式会社レッドハット	-	QEMU-KVM のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0431	2010-09-7 15:50	2010-08-19	Show	GitHub Exploit DB Packet Storm

252947	6.6	警告	サイバートラスト株式会社レッドハット	-	複数のレッドハット製品などで利用される libspice のメモリ管理操作における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0429	2010-09-7 15:49	2010-08-19	Show	GitHub Exploit DB Packet Storm

252948	6.6	警告	サイバートラスト株式会社レッドハット	-	複数のレッドハット製品などで利用される libspice のゲスト QXL ドライバポインタにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0428	2010-09-7 15:48	2010-08-19	Show	GitHub Exploit DB Packet Storm

252949	-	-	ワイズテクノロジー	-	Wyse ThinOS LPD サービスにバッファオーバーフローの脆弱性	-	-	2010-09-7 15:47	2010-08-17	Show	GitHub Exploit DB Packet Storm

252950	7.8	危険	日立	-	Hitachi Storage Command Suite 製品の組み込みデータベースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-09-7 15:45	2010-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290191	-	cisco	ios	Cisco IOS before 15.1(2)SY allows remote authenticated users to cause a denial of service (device crash) by establishing an SSH session from a client and then placing this client into a (1) slow or (…	NVD-CWE-noinfo	CVE-2012-5014	2024-11-21 10:43	2014-04-23	Show	GitHub Exploit DB Packet Storm

290192	-	cisco	ios	Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote attackers to cause a denial of service (latency) via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Towe…	CWE-189 Numeric Errors	CVE-2012-4651	2024-11-21 10:43	2014-04-23	Show	GitHub Exploit DB Packet Storm

290193	-	cisco	ios	Cisco IOS before 15.1(1)SY allows local users to cause a denial of service (device reload) by establishing an outbound SSH session, aka Bug ID CSCto00318.	NVD-CWE-noinfo	CVE-2012-4638	2024-11-21 10:43	2014-04-23	Show	GitHub Exploit DB Packet Storm

290194	-	dvs_custom_notification_project	dvs_custom_notification	Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom Notification plugin 1.0.1 and earlier for WordPress allow remote attackers to hijack the authentication of administrators …	CWE-352 Origin Validation Error	CVE-2012-4921	2024-11-21 10:43	2014-04-11	Show	GitHub Exploit DB Packet Storm

290195	-	zingiri	forums	Directory traversal vulnerability in the zing_forum_output function in forum.php in the Zingiri Forum (aka Forums) plugin before 1.4.4 for WordPress allows remote attackers to read arbitrary files vi…	CWE-22 Path Traversal	CVE-2012-4920	2024-11-21 10:43	2014-04-4	Show	GitHub Exploit DB Packet Storm

290196	-	kingsoft	office_2012	Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4886	2024-11-21 10:43	2014-03-25	Show	GitHub Exploit DB Packet Storm

290197	-	tuxfamily	chrony	cmdmon.c in Chrony before 1.29 allows remote attackers to obtain potentially sensitive information from stack memory via vectors related to (1) an invalid subnet in a RPY_SUBNETS_ACCESSED command to …	CWE-200 Information Exposure	CVE-2012-4503	2024-11-21 10:43	2013-11-6	Show	GitHub Exploit DB Packet Storm

290198	-	tuxfamily	chrony	Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command r…	CWE-189 Numeric Errors	CVE-2012-4502	2024-11-21 10:43	2013-11-6	Show	GitHub Exploit DB Packet Storm

290199	-	redhat	jboss_enterprise_application_platform jboss_enterprise_portal_platform	Red Hat JBoss Enterprise Application Platform (EAP) before 6.1.0 and JBoss Portal before 6.1.0 does not load the implementation of a custom authorization module for a new application when an implemen…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4572	2024-11-21 10:43	2013-10-29	Show	GitHub Exploit DB Packet Storm

290200	-	redhat	jboss_community_application_server jboss_enterprise_application_platform	The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a…	NVD-CWE-noinfo	CVE-2012-4529	2024-11-21 10:43	2013-10-29	Show	GitHub Exploit DB Packet Storm