Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253321	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0514	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

253322	6.8	警告	アップル	-	Apple Mac OS X の PS Normalizer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0513	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

253323	9.3	危険	アップル	-	Apple Mac OS X のアカウント環境設定の実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0512	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

253324	5	警告	アップル	-	Apple Mac OS X の Podcast プロデューサーにおけるワークフローにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0511	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

253325	9	危険	アップル	-	Apple Mac OS X のパスワードサーバにおけるログインアクセスを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0510	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

253326	7.2	危険	アップル	-	Apple Mac OS X の SFLServer における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0509	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

253327	7.8	危険	アップル	-	Apple Mac OS X の Mail における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-0525	2010-04-15 18:36	2010-03-29	Show	GitHub Exploit DB Packet Storm

253328	4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2009-4019	2010-04-15 18:16	2009-11-30	Show	GitHub Exploit DB Packet Storm

253329	6.8	警告	The PHP Group アップル	-	PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3558	2010-04-15 18:16	2009-11-23	Show	GitHub Exploit DB Packet Storm

253330	4.4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL における権限チェックを回避される脆弱性	CWE-59 リンク解釈の問題	CVE-2009-4030	2010-04-15 18:16	2009-11-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287861	-	cob\'s_products	cobime	The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesyst…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0720	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

287862	-	codedesign	artime_japanese_input	The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0719	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

287863	-	simeji	simeji	The Simeji application 4.8.1 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local fil…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0718	2024-11-21 10:48	2013-03-28	Show	GitHub Exploit DB Packet Storm

287864	-	mailup	wp-mailup	ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0731	2024-11-21 10:48	2013-03-23	Show	GitHub Exploit DB Packet Storm

287865	-	linux	linux_kernel	The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0914	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

287866	-	canonical	ubuntu_linux	pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1052	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

287867	-	debian canonical	apt advanced_package_tool ubuntu_linux	apt 0.8.16, 0.9.7, and possibly other versions does not properly handle InRelease files, which allows man-in-the-middle attackers to modify packages before installation via unknown vectors, possibly …	CWE-20 Improper Input Validation	CVE-2013-1051	2024-11-21 10:48	2013-03-22	Show	GitHub Exploit DB Packet Storm

287868	-	windriver	vxworks	The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.	CWE-20 Improper Input Validation	CVE-2013-0716	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

287869	-	windriver	vxworks	The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.	CWE-20 Improper Input Validation	CVE-2013-0715	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm

287870	-	windriver	vxworks	IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication r…	CWE-20 Improper Input Validation	CVE-2013-0714	2024-11-21 10:48	2013-03-21	Show	GitHub Exploit DB Packet Storm