Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253231 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0477 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
253232 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0476 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
253233 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0270 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
253234 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0269 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
253235 9.3 危険 マイクロソフト - Microsoft Windows の Cabinet File Viewer Shell Extension における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0487 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
253236 9.3 危険 マイクロソフト - Microsoft Windows の Authenticode Signature Verification における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0486 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
253237 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
253238 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
253239 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-1565 2010-05-7 17:26 2010-04-9 Show GitHub Exploit DB Packet Storm
253240 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
271521 - sap netweaver Buffer overflow in the C_SAPGPARAM function in the NetWeaver Dispatcher in SAP KERNEL 7.00 (7000.52.12.34966) and 7.40 (7400.12.21.30308) allows remote authenticated users to cause a denial of servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2815 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271522 - sap clinical_task_tracker
emr_unwired 		SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl,… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2814 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271523 - sap mobile_platform XML external entity (XXE) vulnerability in SAP Mobile Platform allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2125358. NVD-CWE-Other
CVE-2015-2813 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271524 - sap netweaver_enterprise_portal XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Secur… NVD-CWE-Other
CVE-2015-2812 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271525 - sap netweaver_enterprise_portal XML external entity (XXE) vulnerability in ReportXmlViewer in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Not… NVD-CWE-Other
CVE-2015-2811 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271526 - debian
xen
fedoraproject
canonical 		debian_linux
xen
fedora
ubuntu_linux 		QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2756 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271527 - ab_google_map_travel_project ab_google_map_travel Multiple cross-site request forgery (CSRF) vulnerabilities in the AB Google Map Travel (AB-MAP) plugin before 4.0 for WordPress allow remote attackers to hijack the authentication of administrators f… CWE-352
 Origin Validation Error 		CVE-2015-2755 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271528 - synology diskstation_manager The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM) before 3.1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attack… CWE-200
Information Exposure 		CVE-2015-2809 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271529 - oracle
debian
redhat
suse
opensuse
canonical
fujitsu
huawei
ibm 		http_server
integrated_lights_out_manager_firmware
communications_application_session_controller
communications_policy_management
debian_linux
enterprise_linux_desktop
enterprise_li… 		The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to cond… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2015-2808 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
271530 - debian
gaia-gis 		debian_linux
freexl 		The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook. CWE-20
 Improper Input Validation  		CVE-2015-2776 2024-11-21 11:28 2015-03-31 Show GitHub Exploit DB Packet Storm