Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253311 6.9 警告 VMware - 複数の VMware 製品の vmware-authd における権限を取得される脆弱性 CWE-Other
その他 		CVE-2008-0967 2010-09-13 16:02 2008-06-4 Show GitHub Exploit DB Packet Storm
253312 7.2 危険 VMware - 複数の VMware 製品におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4917 2010-09-13 16:01 2008-12-2 Show GitHub Exploit DB Packet Storm
253313 6.8 警告 VMware - 複数の VMware 製品の CPU ハードウェアエミュレーションにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4279 2010-09-13 16:01 2008-10-3 Show GitHub Exploit DB Packet Storm
253314 2.1 注意 VMware - VMware ESX の VMware Consolidated Backup コマンドラインユーティリティにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2101 2010-09-13 16:01 2008-08-29 Show GitHub Exploit DB Packet Storm
253315 9 危険 VMware - VMware ESXi および ESX の openwsman management service におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2097 2010-09-13 16:01 2008-06-4 Show GitHub Exploit DB Packet Storm
253316 6.9 警告 VMware - Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-2099 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
253317 6.9 警告 VMware - 複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2098 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
253318 5 警告 VMware - 複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-4811 2010-09-13 16:00 2010-04-27 Show GitHub Exploit DB Packet Storm
253319 7.2 危険 VMware - Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3698 2010-09-13 15:59 2008-08-29 Show GitHub Exploit DB Packet Storm
253320 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3696 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258191 7.8 HIGH
Local 		jasper_project jasper Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an asse… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9387 2024-11-21 12:01 2017-03-24 Show GitHub Exploit DB Packet Storm
258192 7.8 HIGH
Local 		debian
canonical
apache 		debian_linux
ubuntu_linux
tomcat 		The postrm script in the tomcat6 package before 6.0.45+dfsg-1~deb7u3 on Debian wheezy, before 6.0.45+dfsg-1~deb8u1 on Debian jessie, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 L… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9775 2024-11-21 12:01 2017-03-24 Show GitHub Exploit DB Packet Storm
258193 7.8 HIGH
Local 		debian
canonical
apache 		debian_linux
ubuntu_linux
tomcat 		The postinst script in the tomcat6 package before 6.0.45+dfsg-1~deb7u4 on Debian wheezy, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7… CWE-59
Link Following 		CVE-2016-9774 2024-11-21 12:01 2017-03-24 Show GitHub Exploit DB Packet Storm
258194 3.1 LOW
Network 		ibm rational_rhapsody_design_manager An unspecified vulnerability in IBM Rhapsody DM 4.0, 5.0, and 6.0 could allow an attacker to perform a JSON Hijacking Attack. A JSON Hijacking Attack may expose to an attacker information passed betw… CWE-200
Information Exposure 		CVE-2016-9697 2024-11-21 12:01 2017-03-21 Show GitHub Exploit DB Packet Storm
258195 5.4 MEDIUM
Network 		ibm rational_rhapsody_design_manager IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the secu… CWE-79
Cross-site Scripting 		CVE-2016-9696 2024-11-21 12:01 2017-03-21 Show GitHub Exploit DB Packet Storm
258196 5.4 MEDIUM
Network 		ibm rational_rhapsody_design_manager IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pote… CWE-79
Cross-site Scripting 		CVE-2016-9694 2024-11-21 12:01 2017-03-21 Show GitHub Exploit DB Packet Storm
258197 7.5 HIGH
Network 		eaton xcomfort_ethernet_communication_interface An issue was discovered in Eaton xComfort Ethernet Communication Interface (ECI) Versions 1.07 and prior. By accessing a specific uniform resource locator (URL) on the webserver, a malicious user may… CWE-284
Improper Access Control 		CVE-2016-9368 2024-11-21 12:01 2017-03-14 Show GitHub Exploit DB Packet Storm
258198 7.5 HIGH
Network 		ibm qradar_security_information_and_event_manager IBM QRadar 7.2 could allow a remote attacker to consume all resources on the server due to not properly restricting the size or amount of resources requested by an actor. IBM Reference #: 1999556. CWE-399
 Resource Management Errors 		CVE-2016-9740 2024-11-21 12:01 2017-03-8 Show GitHub Exploit DB Packet Storm
258199 4.3 MEDIUM
Network 		ibm qradar_security_information_and_event_manager
qradar_incident_forensics 		IBM QRadar Incident Forensics 7.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trus… CWE-352
 Origin Validation Error 		CVE-2016-9730 2024-11-21 12:01 2017-03-8 Show GitHub Exploit DB Packet Storm
258200 6.5 MEDIUM
Network 		ibm qradar_security_information_and_event_manager IBM QRadar 7.2 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM Reference #: 1999545. CWE-287
Improper Authentication 		CVE-2016-9729 2024-11-21 12:01 2017-03-8 Show GitHub Exploit DB Packet Storm