Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253431 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
253432 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
253433 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
253434 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
253435 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253436 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253437 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253438 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
253439 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
253440 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
282861 - redhat
fedoraproject 		enterprise_linux
sssd 		The System Security Services Daemon (SSSD) 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrict… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0249 2024-11-21 11:01 2014-06-11 Show GitHub Exploit DB Packet Storm
282862 - microsoft windows_server_2012
windows_8.1
windows_7
windows_8 		The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly encrypt sessions, which makes it easier for … CWE-310
Cryptographic Issues 		CVE-2014-0296 2024-11-21 11:01 2014-06-11 Show GitHub Exploit DB Packet Storm
282863 - microsoft internet_explorer Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0282 2024-11-21 11:01 2014-06-11 Show GitHub Exploit DB Packet Storm
282864 - cloudera cloudera_manager Cloudera Manager before 4.8.3 and 5.x before 5.0.1 allows remote authenticated users to obtain sensitive configuration information via the API. CWE-200
Information Exposure 		CVE-2014-0220 2024-11-21 11:01 2014-06-10 Show GitHub Exploit DB Packet Storm
282865 7.4 HIGH
Network 		openssl
redhat
fedoraproject
opensuse
filezilla-project
siemens
mariadb
python
nodejs 		openssl
jboss_enterprise_web_platform
enterprise_linux
storage
jboss_enterprise_web_server
jboss_enterprise_application_platform
fedora
opensuse
filezilla_server
applicatio… 		OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a z… CWE-326
Inadequate Encryption Strength 		CVE-2014-0224 2024-11-21 11:01 2014-06-6 Show GitHub Exploit DB Packet Storm
282866 - openssl
redhat
fedoraproject
mariadb
opensuse
suse 		openssl
enterprise_linux
storage
fedora
mariadb
leap
opensuse
linux_enterprise_server
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise… 		The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client… NVD-CWE-noinfo
CVE-2014-0221 2024-11-21 11:01 2014-06-6 Show GitHub Exploit DB Packet Storm
282867 - openssl
mariadb
opensuse
fedoraproject 		openssl
mariadb
leap
opensuse
fedora 		The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, w… CWE-120
Classic Buffer Overflow 		CVE-2014-0195 2024-11-21 11:01 2014-06-6 Show GitHub Exploit DB Packet Storm
282868 - redhat openstack OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets gpgcheck to 0 for certain templates, which disables GPG signature checking on downloaded pa… CWE-310
Cryptographic Issues 		CVE-2014-0042 2024-11-21 11:01 2014-06-3 Show GitHub Exploit DB Packet Storm
282869 - redhat openstack OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets sslverify to false for certain Yum repositories, which disables SSL protection and allows m… CWE-310
Cryptographic Issues 		CVE-2014-0041 2024-11-21 11:01 2014-06-3 Show GitHub Exploit DB Packet Storm
282870 - redhat openstack OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, uses an HTTP connection to download (1) packages and (2) signing keys from Yum repositories, whi… NVD-CWE-noinfo
CVE-2014-0040 2024-11-21 11:01 2014-06-3 Show GitHub Exploit DB Packet Storm