Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253461 3.6 注意 オラクル - Oracle Database の Change Data Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0870 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
253462 4 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0851 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
253463 4 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0867 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
253464 5.5 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0852 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
253465 6.5 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0866 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
253466 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
253467 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
253468 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
253469 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
253470 6.4 警告 マイクロソフト - Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0812 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308731 7.5 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native high-performance edge/middle/service proxy. Jwt filter will lead to an Envoy crash when clear route cache with remote JWKs. In the following case: 1. remote JWKs are used, whi… CWE-476
 NULL Pointer Dereference 		CVE-2024-45809 2024-09-25 05:12 2024-09-20 Show GitHub Exploit DB Packet Storm
308732 7.5 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy will crash when the http async client is handling `sendLocalReply` under some circumstance, e.g., websocket upgrade, and requ… NVD-CWE-noinfo
CVE-2024-45810 2024-09-25 04:48 2024-09-20 Show GitHub Exploit DB Packet Storm
308733 4.8 MEDIUM
Network 		mage-people bus_ticket_booking_with_seat_reservation Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MagePeople Team Bus Ticket Booking with Seat Reservation allows Stored XSS.This issue affe… CWE-79
Cross-site Scripting 		CVE-2024-43985 2024-09-25 04:33 2024-09-18 Show GitHub Exploit DB Packet Storm
308734 6.1 MEDIUM
Network 		couchbase couchbase_server Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection. CWE-74
Injection 		CVE-2024-25673 2024-09-25 04:08 2024-09-20 Show GitHub Exploit DB Packet Storm
308735 5.5 MEDIUM
Local 		apple macos
ipados
iphone_os
visionos
tvos
watchos 		A logic error was addressed with improved error handling. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, macOS So… NVD-CWE-noinfo
CVE-2024-44183 2024-09-25 04:04 2024-09-17 Show GitHub Exploit DB Packet Storm
308736 2.4 LOW
Physics 		apple iphone_os
ipados 		The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to access contacts from the lock screen. NVD-CWE-noinfo
CVE-2024-44180 2024-09-25 04:04 2024-09-17 Show GitHub Exploit DB Packet Storm
308737 5.5 MEDIUM
Local 		apple macos
ipados
iphone_os 		A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. An app … NVD-CWE-noinfo
CVE-2024-44184 2024-09-25 04:03 2024-09-17 Show GitHub Exploit DB Packet Storm
308738 6.5 MEDIUM
Network 		apple macos
safari 		The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing. NVD-CWE-noinfo
CVE-2024-40866 2024-09-25 04:02 2024-09-17 Show GitHub Exploit DB Packet Storm
308739 5.5 MEDIUM
Local 		apple macos
iphone_os
ipados 		This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to access sensitive user data. CWE-59
Link Following 		CVE-2024-44131 2024-09-25 04:01 2024-09-17 Show GitHub Exploit DB Packet Storm
308740 4.4 MEDIUM
Local 		apple macos This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15. An app with root privileges may be able to access private information. NVD-CWE-noinfo
CVE-2024-44130 2024-09-25 03:49 2024-09-17 Show GitHub Exploit DB Packet Storm