Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253591	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile の aiff_read_header におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1791	2011-05-10 10:49	2009-05-26	Show	GitHub Exploit DB Packet Storm

253592	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile の voc_read_header におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1788	2011-05-10 10:48	2009-05-26	Show	GitHub Exploit DB Packet Storm

253593	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0186	2011-05-10 10:47	2009-03-5	Show	GitHub Exploit DB Packet Storm

253594	-	-	アップル	-	Apple Mac OS X における脆弱性に対するアップデート	-	-	2011-05-10 10:46	2011-04-15	Show	GitHub Exploit DB Packet Storm

253595	10	危険	BlackBerry アップル Google	-	WebKit における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2011-1290	2011-05-10 10:43	2011-03-11	Show	GitHub Exploit DB Packet Storm

253596	10	危険	MIT Kerberos レッドハット	-	MIT Kerberos 5 の process_chpw_request 関数における任意のコードを実行される脆弱性	CWE-20 CWE-Other	CVE-2011-0285	2011-05-10 10:40	2011-04-14	Show	GitHub Exploit DB Packet Storm

253597	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の rvrender.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1525	2011-05-10 10:38	2011-04-6	Show	GitHub Exploit DB Packet Storm

253598	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の OpenURLInDefaultBrowser メソッドにおける任意のコードを実行される脆弱性	CWE-DesignError	CVE-2011-1426	2011-05-10 10:38	2011-04-12	Show	GitHub Exploit DB Packet Storm

253599	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3450	2011-05-10 10:09	2011-01-28	Show	GitHub Exploit DB Packet Storm

253600	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の Impress におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4253	2011-05-10 10:08	2011-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258951	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the fd allocated during the get_metadata was not closed even though the buffer allocate…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11019	2024-11-21 12:06	2017-12-6	Show	GitHub Exploit DB Packet Storm

258952	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation fails while creating a calibration block in create_cal_block sta…	CWE-404 Improper Resource Shutdown or Release	CVE-2017-11016	2024-11-21 12:06	2017-12-6	Show	GitHub Exploit DB Packet Storm

258953	9.8	CRITICAL Network	princeton	ptw-wms1_firmware	Improper authentication issue in PTW-WMS1 firmware version 2.000.012 allows remote attackers to log in to the device with root privileges and conduct arbitrary operations via unspecified vectors.	CWE-287 Improper Authentication	CVE-2017-10903	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258954	9.8	CRITICAL Network	princeton	ptw-wms1_firmware	PTW-WMS1 firmware version 2.000.012 allows remote attackers to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2017-10902	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258955	7.5	HIGH Network	princeton	ptw-wms1_firmware	Buffer overflow in PTW-WMS1 firmware version 2.000.012 allows remote attackers to conduct denial-of-service attacks via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-10901	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258956	9.8	CRITICAL Network	princeton	ptw-wms1_firmware	PTW-WMS1 firmware version 2.000.012 allows remote attackers to bypass access restrictions to obtain or delete data on the disk via unspecified vectors.	NVD-CWE-noinfo	CVE-2017-10900	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258957	9.8	CRITICAL Network	ark-web	a-reserve	SQL injection vulnerability in the A-Reserve and A-Reserve for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2017-10899	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258958	9.8	CRITICAL Network	ark-web	a-member	SQL injection vulnerability in the A-Member and A-Member for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2017-10898	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258959	7.5	HIGH Network	sdnsproxy_project	sdnsproxy	sDNSProxy.exe ver1.1.0.0 and earlier allows remote attackers to cause a denial of service via unspecified vectors.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2017-10895	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

258960	7.5	HIGH Network	streamrelay	streamrelay	StreamRelay.NET.exe ver2.14.0.7 and earlier allows remote attackers to cause a denial of service via unspecified vectors.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2017-10894	2024-11-21 12:06	2017-12-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed