Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253001 4.3 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0070 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253002 5 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0067 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253003 5 警告 オラクル - Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0066 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253004 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1385 2010-02-15 11:03 2009-06-4 Show GitHub Exploit DB Packet Storm
253005 4.6 警告 サイバートラスト株式会社
Todd C. Miller		 - sudo の Perl スクリプト実行時における権限昇格の脆弱性 - CVE-2005-4158 2010-02-15 11:03 2005-11-8 Show GitHub Exploit DB Packet Storm
253006 1 注意 オラクル - Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3412 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
253007 3.2 注意 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3413 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
253008 3.6 注意 オラクル - Oracle Database の RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3410 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
253009 4 警告 オラクル - Oracle Database の Logical Standby コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1996 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
253010 4.9 警告 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3414 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251711 6.5 MEDIUM
Network 		asp4cms aspcms member/Orderinfo.asp in ASP4CMS AspCMS 2.7.2 allows remote authenticated users to read arbitrary order information via a modified OrderNo parameter. CWE-200
Information Exposure 		CVE-2017-14653 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251712 9.8 CRITICAL
Network 		sam2p_project sam2p In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb function in in_xpm.cpp. However, this can also cause a write to an illegal address. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14637 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251713 9.8 CRITICAL
Network 		sam2p_project sam2p Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp. However, this also causes… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-14636 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251714 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14687 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251715 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14686 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251716 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14685 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251717 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in the function ReadVIPSImage in coders/vips.c, which allows attackers to cause a denial of service (memory consumption in ResizeMagi… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-14684 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251718 8.8 HIGH
Network 		imagemagick imagemagick GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impa… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14682 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251719 5.5 MEDIUM
Local 		p3scan_project p3scan The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to t… CWE-665
 Improper Initialization 		CVE-2017-14681 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
251720 7.5 HIGH
Network 		zkteco zktime_web ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document. CWE-200
Information Exposure 		CVE-2017-14680 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm