Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253711	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253712	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253713	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253714	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253715	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253716	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253717	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253718	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

253719	6.9	警告	サイバートラスト株式会社レッドハット acpid	-	acpid のレッドハットパッチにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4033	2010-01-21 11:43	2009-12-7	Show	GitHub Exploit DB Packet Storm

253720	10	危険	アドビシステムズ	-	Adobe Illustrator における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3952	2010-01-21 11:43	2010-01-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
288561	-	redhat linux	enterprise_linux linux_kernel	The Bluetooth RFCOMM implementation in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a c…	CWE-200 Information Exposure	CVE-2012-6545	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288562	-	linux redhat	linux_kernel enterprise_linux	The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a cr…	CWE-200 Information Exposure	CVE-2012-6544	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288563	-	linux	linux_kernel	The l2tp_ip6_getname function in net/l2tp/l2tp_ip6.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kerne…	CWE-200 Information Exposure	CVE-2012-6543	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288564	-	linux redhat	linux_kernel enterprise_linux	The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from ke…	CWE-200 Information Exposure	CVE-2012-6542	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288565	-	linux	linux_kernel	The ccid3_hc_tx_getsockopt function in net/dccp/ccids/ccid3.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from ker…	CWE-200 Information Exposure	CVE-2012-6541	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288566	-	linux	linux_kernel	The do_ip_vs_get_ctl function in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 3.6 does not initialize a certain structure for IP_VS_SO_GET_TIMEOUT commands, which allows local users to o…	CWE-200 Information Exposure	CVE-2012-6540	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288567	-	linux	linux_kernel	The dev_ifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a…	CWE-200 Information Exposure	CVE-2012-6539	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288568	-	linux redhat	linux_kernel enterprise_linux	The copy_to_user_auth function in net/xfrm/xfrm_user.c in the Linux kernel before 3.6 uses an incorrect C library function for copying a string, which allows local users to obtain sensitive informati…	CWE-200 Information Exposure	CVE-2012-6538	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288569	-	linux redhat	linux_kernel enterprise_linux	net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN…	CWE-200 Information Exposure	CVE-2012-6537	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm

288570	-	linux	linux_kernel	net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not verify that the actual Netlink message length is consistent with a certain header field, which allows local users to obtain sensitive info…	CWE-200 Information Exposure	CVE-2012-6536	2024-11-21 10:46	2013-03-16	Show	GitHub Exploit DB Packet Storm