Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253301	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3751	2010-11-10 15:32	2010-10-15	Show	GitHub Exploit DB Packet Storm

253302	10	危険	SAP	-	SAP BusinessObjects Axis2 におけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2010-0219	2010-11-10 15:32	2010-10-14	Show	GitHub Exploit DB Packet Storm

253303	4	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-0781	2010-11-9 15:30	2010-09-13	Show	GitHub Exploit DB Packet Storm

253304	10	危険	IBM	-	IBM WebSphere Application Server における脆弱性	CWE-20 不適切な入力確認	CVE-2010-3186	2010-11-9 15:30	2010-08-26	Show	GitHub Exploit DB Packet Storm

253305	7.5	危険	IBM Apache Software Foundation	-	Apache Axis2 における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2010-1632	2010-11-9 15:29	2010-06-22	Show	GitHub Exploit DB Packet Storm

253306	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における QCP ファイルの処理に関するヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2578	2010-11-9 14:51	2010-10-15	Show	GitHub Exploit DB Packet Storm

253307	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の rjrmrpln.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3750	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

253308	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3747	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

253309	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2998	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

253310	-	-	Artifex Software	-	Ghostscript にサービス運用妨害 (DoS) の脆弱性	-	-	2010-11-9 14:46	2010-10-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254801	6.5	MEDIUM Network	graphicsmagick	graphicsmagick	The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has an issue where memory allocation is excessive because it depends only on a length field in a header. This may lead to remote den…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14165	2024-11-21 12:12	2017-09-7	Show	GitHub Exploit DB Packet Storm

254802	8.8	HIGH Network	uclouvain	openjpeg	A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-b…	CWE-119 CWE-787 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Write	CVE-2017-14164	2024-11-21 12:12	2017-09-7	Show	GitHub Exploit DB Packet Storm

254803	4.7	MEDIUM Local	openldap oracle	openldap blockchain_platform	slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-roo…	CWE-665 Improper Initialization	CVE-2017-14159	2024-11-21 12:12	2017-09-6	Show	GitHub Exploit DB Packet Storm

254804	7.5	HIGH Network	scrapy	scrapy	Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files …	CWE-400 Uncontrolled Resource Consumption	CVE-2017-14158	2024-11-21 12:12	2017-09-6	Show	GitHub Exploit DB Packet Storm

254805	5.5	MEDIUM Local	linux	linux_kernel	The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive informa…	CWE-200 Information Exposure	CVE-2017-14156	2024-11-21 12:12	2017-09-6	Show	GitHub Exploit DB Packet Storm

254806	8.8	HIGH Network	uclouvain debian	openjpeg debian_linux	A mishandled zero case was discovered in opj_j2k_set_cinema_parameters in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of serv…	CWE-787 Out-of-bounds Write	CVE-2017-14152	2024-11-21 12:12	2017-09-6	Show	GitHub Exploit DB Packet Storm

254807	8.8	HIGH Network	uclouvain debian	openjpeg debian_linux	An off-by-one error was discovered in opj_tcd_code_block_enc_allocate_data in lib/openjp2/tcd.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14151	2024-11-21 12:12	2017-09-6	Show	GitHub Exploit DB Packet Storm

254808	7.5	HIGH Network	embedthis	goahead	GoAhead 3.4.0 through 3.6.5 has a NULL Pointer Dereference in the websDecodeUrl function in http.c, leading to a crash for a "POST / HTTP/1.1" request.	CWE-476 NULL Pointer Dereference	CVE-2017-14149	2024-11-21 12:12	2017-09-5	Show	GitHub Exploit DB Packet Storm

254809	8.8	HIGH Network	helpdezk	helpdezk	HelpDEZk 1.1.1 allows remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it in the helpdezk\app\uploads\helpdezk\attachments\ directory.	CWE-94 Code Injection	CVE-2017-14146	2024-11-21 12:12	2017-09-5	Show	GitHub Exploit DB Packet Storm

254810	9.8	CRITICAL Network	helpdezk	helpdezk	HelpDEZk 1.1.1 has SQL Injection in app\modules\admin\controllers\loginController.php via the admin/login/getWarningInfo/id/ PATH_INFO, related to the selectWarning function.	CWE-89 SQL Injection	CVE-2017-14145	2024-11-21 12:12	2017-09-5	Show	GitHub Exploit DB Packet Storm