Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253091	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253092	9	危険	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2509	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253093	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253094	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253095	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253096	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253097	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253098	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253099	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253100	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249721	5.5	MEDIUM Local	huawei	p9_lite_firmware	The inputhub driver of HUAWEI P9 Lite mobile phones with Versions earlier than VNS-L21C02B341, Versions earlier than VNS-L21C22B380, Versions earlier than VNS-L31C02B341, Versions earlier than VNS-L3…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17313	2024-11-21 12:17	2018-04-19	Show	GitHub Exploit DB Packet Storm

249722	7.5	HIGH Network	huawei	dp300_firmware rp200_firmware te30_firmware te40_firmware te50_firmware te60_firmware	Electronic Numbers to URI Mapping (ENUM) module in some Huawei products DP300 V500R002C00, RP200 V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17310	2024-11-21 12:17	2018-04-19	Show	GitHub Exploit DB Packet Storm

249723	5.3	MEDIUM Network	huawei	dp300_firmware rp200_firmware te30_firmware te40_firmware te50_firmware te60_firmware	SCCPX module in Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V…	CWE-20 Improper Input Validation	CVE-2017-17308	2024-11-21 12:17	2018-04-12	Show	GitHub Exploit DB Packet Storm

249724	7.8	HIGH Local	hashicorp	vagrant_vmware_fusion	It is possible to exploit an unsanitized PATH in the suid binary that ships with vagrant-vmware-fusion 4.0.25 through 5.0.4 in order to escalate to root privileges.	NVD-CWE-noinfo	CVE-2017-16873	2024-11-21 12:17	2018-03-30	Show	GitHub Exploit DB Packet Storm

249725	7.0	HIGH Local	hashicorp	vagrant_vmware_fusion	Hashicorp vagrant-vmware-fusion 5.0.4 allows local users to steal root privileges if VMware Fusion is not installed.	NVD-CWE-noinfo	CVE-2017-16839	2024-11-21 12:17	2018-03-30	Show	GitHub Exploit DB Packet Storm

249726	7.8	HIGH Local	huawei	mate_9_pro_firmware	Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that free…	CWE-415 Double Free	CVE-2017-17320	2024-11-21 12:17	2018-03-21	Show	GitHub Exploit DB Packet Storm

249727	5.5	MEDIUM Local	huawei	p9_firmware	Huawei P9 smartphones with the versions before EVA-AL10C00B399SP02 have an information disclosure vulnerability. The software does not properly protect certain resource which can be accessed by multi…	CWE-200 Information Exposure	CVE-2017-17319	2024-11-21 12:17	2018-03-21	Show	GitHub Exploit DB Packet Storm

249728	5.5	MEDIUM Local	huawei	vns-l21_firmware	Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability. Due to the lack string terminator of string, an attacker tricks a user into installing a maliciou…	CWE-125 Out-of-bounds Read	CVE-2017-17307	2024-11-21 12:17	2018-03-21	Show	GitHub Exploit DB Packet Storm

249729	5.5	MEDIUM Local	huawei	vns-l21_firmware	Some Huawei Smartphones with software of VNS-L21AUTC555B141, VNS-L21C10B160, VNS-L21C66B160, VNS-L21C703B140 have an array out-of-bounds read vulnerability. Due to the lack verification of array, an …	CWE-125 Out-of-bounds Read	CVE-2017-17306	2024-11-21 12:17	2018-03-21	Show	GitHub Exploit DB Packet Storm

249730	8.8	HIGH Network	huawei	hg532_firmware	Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could …	CWE-20 Improper Input Validation	CVE-2017-17215	2024-11-21 12:17	2018-03-21	Show	GitHub Exploit DB Packet Storm