Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253431 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
253432 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
253433 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
253434 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
253435 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253436 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253437 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
253438 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
253439 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
253440 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289011 - redhat
gluster 		storage_native_client
storage_server
storage_management_console
glusterfs 		The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5635 2024-11-21 10:45 2013-04-10 Show GitHub Exploit DB Packet Storm
289012 - transmissionbt
fedoraproject
canonical 		transmission
fedora
ubuntu_linux 		Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6129 2024-11-21 10:45 2013-04-3 Show GitHub Exploit DB Packet Storm
289013 - redhat
candlepinproject 		subscription_asset_manager
candlepin 		Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not properly check manifest signatures, which allows local users to modify manifests. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6119 2024-11-21 10:45 2013-04-3 Show GitHub Exploit DB Packet Storm
289014 - mcafee mcafee_virtual_technician
epo_mcafee_virtual_technician 		An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5879 2024-11-21 10:45 2013-03-29 Show GitHub Exploit DB Packet Storm
289015 - ibm lotus_inotes Cross-site scripting (XSS) vulnerability in IBM iNotes 8.5.x before 8.5.3 FP4 allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving mail, aka SPR JDOE8ZZS… CWE-79
Cross-site Scripting 		CVE-2012-5943 2024-11-21 10:45 2013-03-27 Show GitHub Exploit DB Packet Storm
289016 - ibm rational_clearquest Cross-site scripting (XSS) vulnerability in the Web Client in IBM Rational ClearQuest 7.1.x before 7.1.2.10 and 8.x before 8.0.0.6 allows remote attackers to inject arbitrary web script or HTML via a… CWE-79
Cross-site Scripting 		CVE-2012-5757 2024-11-21 10:45 2013-03-22 Show GitHub Exploit DB Packet Storm
289017 - ibm infosphere_information_server The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to byp… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5938 2024-11-21 10:45 2013-03-20 Show GitHub Exploit DB Packet Storm
289018 - redhat enterprise_virtualization_manager The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a wor… CWE-255
Credentials Management 		CVE-2012-6115 2024-11-21 10:45 2013-03-13 Show GitHub Exploit DB Packet Storm
289019 - redhat automatic_bug_reporting_tool abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a syml… CWE-264
CWE-362
Permissions, Privileges, and Access Controls
Race Condition 		CVE-2012-5660 2024-11-21 10:45 2013-03-13 Show GitHub Exploit DB Packet Storm
289020 - redhat automatic_bug_reporting_tool Untrusted search path vulnerability in plugins/abrt-action-install-debuginfo-to-abrt-cache.c in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to load and execute arbitrary … NVD-CWE-Other
CVE-2012-5659 2024-11-21 10:45 2013-03-13 Show GitHub Exploit DB Packet Storm