Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254431 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3131 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
254432 9.3 危険 マイクロソフト - Microsoft Office Excel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3128 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
254433 9.3 危険 マイクロソフト - Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3127 2010-01-5 16:16 2009-11-10 Show GitHub Exploit DB Packet Storm
254434 6.8 警告 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
OpenSSL Project
レッドハット		 - OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5135 2010-01-5 13:31 2007-10-12 Show GitHub Exploit DB Packet Storm
254435 7.8 危険 マイクロソフト - Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1928 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254436 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254437 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254438 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254439 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254440 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298211 8.8 HIGH
Network 		openvas openvas_manager OpenVAS Manager v2.0.3 allows plugin remote code execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2011-1597 2024-11-21 10:26 2020-02-6 Show GitHub Exploit DB Packet Storm
298212 9.8 CRITICAL
Network 		sap netweaver SAP NetWeaver 7.0 allows Remote Code Execution and Denial of Service caused by an error in the DiagTraceHex() function. By sending a specially-crafted packet, an attacker could exploit this vulnerabi… NVD-CWE-noinfo
CVE-2011-1517 2024-11-21 10:26 2020-02-6 Show GitHub Exploit DB Packet Storm
298213 5.5 MEDIUM
Local 		linux linux_kernel A locally locally exploitable DOS vulnerability was found in pax-linux versions 2.6.32.33-test79.patch, 2.6.38-test3.patch, and 2.6.37.4-test14.patch. A bad bounds check in arch_get_unmapped_area_top… CWE-400
CWE-835
 Uncontrolled Resource Consumption
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2011-1474 2024-11-21 10:26 2019-12-27 Show GitHub Exploit DB Packet Storm
298214 7.8 HIGH
Local 		xfce
opensuse
debian 		thunar
opensuse
debian_linux 		Thunar before 1.3.1 could crash when copy and pasting a file name with % format characters due to a format string error. CWE-134
Use of Externally-Controlled Format String 		CVE-2011-1588 2024-11-21 10:26 2019-11-14 Show GitHub Exploit DB Packet Storm
298215 5.5 MEDIUM
Local 		rsyslog
debian
opensuse 		rsyslog
debian_linux
opensuse 		A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when multiple rulesets were used and some output batches contained messages belonging to more than … CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2011-1490 2024-11-21 10:26 2019-11-14 Show GitHub Exploit DB Packet Storm
298216 5.5 MEDIUM
Local 		rsyslog
opensuse
debian 		rsyslog
opensuse
debian_linux 		A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2011-1489 2024-11-21 10:26 2019-11-14 Show GitHub Exploit DB Packet Storm
298217 5.5 MEDIUM
Local 		rsyslog
opensuse
debian 		rsyslog
opensuse
debian_linux 		A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when $RepeatedMsgReduction was enabled. A local attacker could use this flaw to cause a denial of t… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2011-1488 2024-11-21 10:26 2019-11-14 Show GitHub Exploit DB Packet Storm
298218 7.5 HIGH
Network 		google blink An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore::GraphicsContext::fillRect function. CWE-190
 Integer Overflow or Wraparound 		CVE-2011-1298 2024-11-21 10:26 2019-11-7 Show GitHub Exploit DB Packet Storm
298219 9.8 CRITICAL
Network 		google blink WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks are renderblocks. CWE-704
 Incorrect Type Conversion or Cast 		CVE-2011-1460 2024-11-21 10:26 2019-11-6 Show GitHub Exploit DB Packet Storm
298220 6.5 MEDIUM
Network 		google blink The WebKit::WebPluginContainerImpl::handleEvent function in Google Chrome before Blink M11 allows an attacker to cause a denial of service (crash) via the htmlpluginelement.cpp plugin. CWE-400
 Uncontrolled Resource Consumption 		CVE-2011-1459 2024-11-21 10:26 2019-11-6 Show GitHub Exploit DB Packet Storm