Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253501	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

253502	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

253503	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

253504	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2005-4268	2010-05-7 16:51	2005-12-15	Show	GitHub Exploit DB Packet Storm

253505	4.3	警告	日本電気 Apache Software Foundation	-	Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-1885	2010-05-6 13:47	2009-08-6	Show	GitHub Exploit DB Packet Storm

253506	6.4	警告	アップルターボリナックス CUPS	-	CUPS における DNS リバインド攻撃を誘導される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0164	2010-05-6 13:46	2009-04-24	Show	GitHub Exploit DB Packet Storm

253507	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1188	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

253508	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1187	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

253509	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の custom heap management system におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1241	2010-04-30 10:26	2010-04-5	Show	GitHub Exploit DB Packet Storm

253510	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0204	2010-04-30 10:26	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299361	8.8	HIGH Network	consolekit_project debian redhat	consolekit debian_linux enterprise_linux	In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows an authenticated system user to escalate their privileges by initiating a remote VNC session.	CWE-269 Improper Privilege Management	CVE-2010-4664	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299362	7.8	HIGH Local	udisks_project redhat debian opensuse fedoraproject	udisks enterprise_linux debian_linux opensuse fedora	udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2010-4661	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299363	7.5	HIGH Network	php redhat debian	php enterprise_linux debian_linux	PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. This results in memory leak into the resulting output.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2010-4657	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299364	7.8	HIGH Local	freedesktop debian	poppler debian_linux	poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.	CWE-74 Injection	CVE-2010-4654	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299365	6.5	MEDIUM Network	freedesktop debian	poppler debian_linux	An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.	CWE-190 Integer Overflow or Wraparound	CVE-2010-4653	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299366	9.8	CRITICAL Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies.	CWE-295 Improper Certificate Validation	CVE-2010-4533	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299367	5.9	MEDIUM Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks.	CWE-295 Improper Certificate Validation	CVE-2010-4532	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

299368	-		ghostscript	ghostscript	Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working direc…	CWE-94 Code Injection	CVE-2010-4820	2024-11-21 10:21	2014-10-27	Show	GitHub Exploit DB Packet Storm

299369	-		google	android	Android OS before 2.2 does not display the correct SSL certificate in certain cases, which might allow remote attackers to spoof trusted web sites via a web page containing references to external sou…	CWE-310 Cryptographic Issues	CVE-2010-4832	2024-11-21 10:21	2014-05-14	Show	GitHub Exploit DB Packet Storm

299370	-		perl	perl	The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (ass…	CWE-20 Improper Input Validation	CVE-2010-4777	2024-11-21 10:21	2014-02-11	Show	GitHub Exploit DB Packet Storm