Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254071	9.3	危険	アドビシステムズ	-	Adobe Photoshop CS4 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1296	2010-06-15 18:25	2010-05-26	Show	GitHub Exploit DB Packet Storm

254072	5	警告	日立	-	Groupmax World Wide Web Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-06-14 16:24	2010-05-26	Show	GitHub Exploit DB Packet Storm

254073	4.3	警告	日立	-	Hitachi Web Server の SSL クライアント認証における CRL 失効確認不可の脆弱性	CWE-287 不適切な認証	-	2010-06-14 16:24	2010-05-17	Show	GitHub Exploit DB Packet Storm

254074	5	警告	日立	-	TP1/Message Control におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-06-14 16:23	2010-05-17	Show	GitHub Exploit DB Packet Storm

254075	10	危険	日立 CA Technologies	-	CA XOsoft におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1223	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

254076	5	警告	日立 CA Technologies	-	CA XOsoft における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-1222	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

254077	5	警告	日立 CA Technologies	-	CA XOsoft におけるユーザ名を列挙される脆弱性	CWE-287 不適切な認証	CVE-2010-1221	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

254078	6.8	警告	フェンリル株式会社	-	ActiveGeckoBrowser における複数の脆弱性	CWE-Other その他	CVE-2010-2420	2010-06-14 12:01	2010-06-14	Show	GitHub Exploit DB Packet Storm

254079	6.8	警告	サン・マイクロシステムズ GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU tar および GNU cpio の rmt_read__ 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0624	2010-06-11 18:45	2010-03-15	Show	GitHub Exploit DB Packet Storm

254080	3.5	注意	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0733	2010-06-9 16:54	2010-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284121	-	linux	linux_kernel	The futex_wait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allows local users to cause a denial …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0205	2024-11-21 11:01	2014-09-29	Show	GitHub Exploit DB Packet Storm

284122	-	fortinet	fortios	The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 on FortiGate devices does not prevent use of anonymous ciphersuites, which makes it easier for man-in-the-midd…	CWE-310 Cryptographic Issues	CVE-2014-0351	2024-11-21 11:01	2014-09-11	Show	GitHub Exploit DB Packet Storm

284123	-	ovirt	ovirt	The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page.	CWE-200 Information Exposure	CVE-2014-0153	2024-11-21 11:01	2014-09-8	Show	GitHub Exploit DB Packet Storm

284124	-	ovirt redhat	ovirt ovirt-engine	Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors.	NVD-CWE-Other	CVE-2014-0152	2024-11-21 11:01	2014-09-8	Show	GitHub Exploit DB Packet Storm

284125	-	apache	ofbiz	Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to…	CWE-79 Cross-site Scripting	CVE-2014-0232	2024-11-21 11:01	2014-08-22	Show	GitHub Exploit DB Packet Storm

284126	-	iridium	open_port pilot_below_deck_equipment	The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwa…	NVD-CWE-Other	CVE-2014-0327	2024-11-21 11:01	2014-08-18	Show	GitHub Exploit DB Packet Storm

284127	-	iridium	open_port pilot_below_deck_equipment	The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface.	NVD-CWE-Other	CVE-2014-0326	2024-11-21 11:01	2014-08-18	Show	GitHub Exploit DB Packet Storm

284128	-	cobham	ailor_6110_mini-c_gmdss sailor_6006_message_terminal sailor_6222_vhf sailor_6300_mf_\/_hf	The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows attackers to execute arbitrary code by leveraging physical access or terminal access to send…	NVD-CWE-Other	CVE-2014-0328	2024-11-21 11:01	2014-08-15	Show	GitHub Exploit DB Packet Storm

284129	-	microsoft	windows_server_2008 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2012 windows_server_2003	win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0318	2024-11-21 11:01	2014-08-13	Show	GitHub Exploit DB Packet Storm

284130	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_8	Memory leak in the Local RPC (LRPC) server implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 …	CWE-399 Resource Management Errors	CVE-2014-0316	2024-11-21 11:01	2014-08-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed