Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254051	6.9	警告	VMware	-	Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2008-2099	2010-09-13 16:00	2008-05-30	Show	GitHub Exploit DB Packet Storm

254052	6.9	警告	VMware	-	複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2098	2010-09-13 16:00	2008-05-30	Show	GitHub Exploit DB Packet Storm

254053	5	警告	VMware	-	複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-4811	2010-09-13 16:00	2010-04-27	Show	GitHub Exploit DB Packet Storm

254054	7.2	危険	VMware	-	Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3698	2010-09-13 15:59	2008-08-29	Show	GitHub Exploit DB Packet Storm

254055	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3696	2010-09-13 15:59	2008-08-28	Show	GitHub Exploit DB Packet Storm

254056	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3695	2010-09-13 15:59	2008-08-28	Show	GitHub Exploit DB Packet Storm

254057	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3694	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

254058	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3693	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

254059	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3692	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

254060	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3691	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254701	7.5	HIGH Adjacent	apple	iphone_os	In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with at…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14315	2024-11-21 12:12	2017-09-13	Show	GitHub Exploit DB Packet Storm

254702	7.5	HIGH Network	hbgk	hb7024xt_firmware hb7032xt_firmware hb7008t2_firmware hb7016t2_firmware hb7204xt_firmware hb7208xt_firmware hb7216xt_firmware hb7208x3_firmware hb7216x3_firmware hb7204x_fi…	On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change.	CWE-20 Improper Input Validation	CVE-2017-14335	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254703	7.8	HIGH Local	gnu	binutils	The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have un…	CWE-190 Integer Overflow or Wraparound	CVE-2017-14333	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254704	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-14326	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254705	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadM…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-14325	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254706	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-14324	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254707	7.8	HIGH Local	broadcom	tcpreplay	tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14266	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254708	6.5	MEDIUM Network	graphicsmagick debian	graphicsmagick debian_linux	Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (DrawDashPolygon heap-based buffer over-read and applicatio…	CWE-125 Out-of-bounds Read	CVE-2017-14314	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254709	6.1	MEDIUM Network	shibboleth_project	shibboleth	The shibboleth_login_form function in shibboleth.php in the Shibboleth plugin before 1.8 for WordPress is prone to an XSS vulnerability due to improper use of add_query_arg().	CWE-79 Cross-site Scripting	CVE-2017-14313	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm

254710	7.8	HIGH Local	nagios	nagios_core	Nagios Core through 4.3.4 initially executes /usr/sbin/nagios as root but supports configuration options in which this file is owned by a non-root account (and similarly can have nagios.cfg owned by …	CWE-269 Improper Privilege Management	CVE-2017-14312	2024-11-21 12:12	2017-09-12	Show	GitHub Exploit DB Packet Storm