Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253241 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
253242 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
253243 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
253244 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
253245 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
253246 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
253247 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
253248 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
253249 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
253250 6.4 警告 アップル
ターボリナックス
CUPS		 - CUPS における DNS リバインド攻撃を誘導される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0164 2010-05-6 13:46 2009-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273291 7.5 HIGH
Network 		apache struts The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter. CWE-20
 Improper Input Validation  		CVE-2015-0899 2024-11-21 11:23 2016-07-5 Show GitHub Exploit DB Packet Storm
273292 7.8 HIGH
Local 		linux linux_kernel The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for … CWE-862
 Missing Authorization 		CVE-2015-0571 2024-11-21 11:23 2016-05-9 Show GitHub Exploit DB Packet Storm
273293 7.8 HIGH
Local 		linux linux_kernel Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in wlan_hdd_hostapd.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) … CWE-787
 Out-of-bounds Write 		CVE-2015-0570 2024-11-21 11:23 2016-05-9 Show GitHub Exploit DB Packet Storm
273294 7.8 HIGH
Local 		linux linux_kernel Heap-based buffer overflow in the private wireless extensions IOCTL implementation in wlan_hdd_wext.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation C… CWE-787
 Out-of-bounds Write 		CVE-2015-0569 2024-11-21 11:23 2016-05-9 Show GitHub Exploit DB Packet Storm
273295 3.3 LOW
Local 		debian
tardiff_project 		debian_linux
tardiff 		Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory. CWE-59
Link Following 		CVE-2015-0858 2024-11-21 11:23 2016-05-7 Show GitHub Exploit DB Packet Storm
273296 9.8 CRITICAL
Network 		tardiff_project
debian 		tardiff
debian_linux 		Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file. CWE-77
Command Injection 		CVE-2015-0857 2024-11-21 11:23 2016-05-7 Show GitHub Exploit DB Packet Storm
273297 4.3 MEDIUM
Network 		tryton
debian 		trytond
debian_linux 		model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.6.5, and 3.8.x before 3.8.1 allows remote authenticated users to bypass intended access restrictions and write… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-0861 2024-11-21 11:23 2016-04-14 Show GitHub Exploit DB Packet Storm
273298 7.5 HIGH
Network 		cisco
samsung
sun
zyxel
netgear
zzinc 		unified_computing_system
x14j_firmware
nx-os
opensolaris
gs1900-10hp_firmware
jr6150_firmware
keymouse_firmware 		Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload… CWE-399
 Resource Management Errors 		CVE-2015-0718 2024-11-21 11:23 2016-03-4 Show GitHub Exploit DB Packet Storm
273299 - canonical
debian 		ubuntu_linux
dpkg 		Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrar… CWE-189
Numeric Errors 		CVE-2015-0860 2024-11-21 11:23 2015-12-4 Show GitHub Exploit DB Packet Storm
273300 - debian debian_linux The Debian build procedure for the smokeping package in wheezy before 2.6.8-2+deb7u1 and jessie before 2.6.9-1+deb8u1 does not properly configure the way Apache httpd passes arguments to smokeping_cg… CWE-17
Code 		CVE-2015-0859 2024-11-21 11:23 2015-12-4 Show GitHub Exploit DB Packet Storm