Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253091 9.3 危険 マイクロソフト - 複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2506 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
253092 9 危険 マイクロソフト - Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2509 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
253093 6.9 警告 マイクロソフト - Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-2508 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
253094 6.8 警告 マイクロソフト - Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3675 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
253095 9.3 危険 マイクロソフト - Microsoft Project における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0102 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
253096 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
253097 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
253098 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
253099 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
253100 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272211 - agilent_technologies feature_extraction The AnnotationX.AnnList.1 ActiveX control in Agilent Technologies Feature Extraction allows remote attackers to execute arbitrary code via a crafted object parameter in the Insert function, related t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2092 2024-11-21 11:26 2015-03-9 Show GitHub Exploit DB Packet Storm
272212 - webgate webgate_embedded_standard_protocol_sdk Multiple buffer overflows in WebGate Embedded Standard Protocol (WESP) SDK allow remote attackers to execute arbitrary code via unspecified vectors to the (1) LoadImage or (2) LoadImageEx function in… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2097 2024-11-21 11:26 2015-03-9 Show GitHub Exploit DB Packet Storm
272213 - winace unace Integer overflow in unace 1.2b allows remote attackers to cause a denial of service (crash) via a small file header in an ace archive, which triggers a buffer overflow. CWE-189
Numeric Errors 		CVE-2015-2063 2024-11-21 11:26 2015-03-9 Show GitHub Exploit DB Packet Storm
272214 - ptc creo_view Heap-based buffer overflow in the browser plugin for PTC Creo View allows remote attackers to execute arbitrary code via vectors involving setting a large buffer to an unspecified attribute. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2061 2024-11-21 11:26 2015-03-9 Show GitHub Exploit DB Packet Storm
272215 - wireshark
opensuse 		wireshark
opensuse 		Integer overflow in the dissect_osd2_cdb_continuation function in epan/dissectors/packet-scsi-osd.c in the SCSI OSD dissector in Wireshark 1.12.x before 1.12.4 allows remote attackers to cause a deni… CWE-189
Numeric Errors 		CVE-2015-2192 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm
272216 - debian
mageia
wireshark
opensuse 		debian_linux
mageia
wireshark
opensuse 		Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a den… CWE-189
Numeric Errors 		CVE-2015-2191 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm
272217 - opensuse
wireshark
oracle 		opensuse
wireshark
solaris 		epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly handle integer data types greater than 32 bits in size, which allows remote attackers to cause a denial of service (assertion failure … CWE-19
 Data Processing Errors 		CVE-2015-2190 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm
272218 - wireshark
oracle
opensuse
debian
mageia 		wireshark
solaris
linux
opensuse
debian_linux
mageia 		Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of ser… CWE-189
Numeric Errors 		CVE-2015-2189 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm
272219 - wireshark
mageia
opensuse
debian
oracle 		wireshark
mageia
opensuse
debian_linux
solaris
linux 		epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a d… CWE-19
 Data Processing Errors 		CVE-2015-2188 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm
272220 - opensuse
wireshark 		opensuse
wireshark 		The dissect_atn_cpdlc_heur function in asn1/atn-cpdlc/packet-atn-cpdlc-template.c in the ATN-CPDLC dissector in Wireshark 1.12.x before 1.12.4 does not properly follow the TRY/ENDTRY code requirement… CWE-20
 Improper Input Validation  		CVE-2015-2187 2024-11-21 11:26 2015-03-8 Show GitHub Exploit DB Packet Storm