Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254441	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2748	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254442	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2747	2010-10-26 15:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

254443	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2741	2010-10-26 15:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

254444	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2740	2010-10-26 15:29	2010-10-12	Show	GitHub Exploit DB Packet Storm

254445	7.2	危険	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2744	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

254446	4.9	警告	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2549	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

254447	6.5	警告	IBM	-	Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0462	2010-10-26 15:24	2010-01-28	Show	GitHub Exploit DB Packet Storm

254448	9.3	危険	マイクロソフト	-	64-bit プラットフォーム上で稼働している Microsoft .NET Framework の JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3228	2010-10-25 16:37	2010-10-12	Show	GitHub Exploit DB Packet Storm

254449	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の Embedded OpenType Font Engine における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1883	2010-10-25 16:37	2010-10-12	Show	GitHub Exploit DB Packet Storm

254450	7.6	危険	マイクロソフト	-	複数の Microsoft 製品の Media Player Network Sharing Service における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-3225	2010-10-25 16:36	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274741	-	networkmanager_project	networkmanager	The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit sett…	CWE-20 Improper Input Validation	CVE-2015-2924	2024-11-21 11:28	2015-11-17	Show	GitHub Exploit DB Packet Storm

274742	-	linux debian canonical	linux_kernel debian_linux ubuntu_linux	The prepend_path function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protect…	NVD-CWE-Other	CVE-2015-2925	2024-11-21 11:28	2015-11-16	Show	GitHub Exploit DB Packet Storm

274743	-	libreswan	libreswan	The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero D…	CWE-189 Numeric Errors	CVE-2015-3240	2024-11-21 11:28	2015-11-10	Show	GitHub Exploit DB Packet Storm

274744	-	hp	arcsight_smartconnectors	The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of thi…	NVD-CWE-Other	CVE-2015-2903	2024-11-21 11:28	2015-11-4	Show	GitHub Exploit DB Packet Storm

274745	-	hp	arcsight_smartconnectors	HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted…	CWE-310 Cryptographic Issues	CVE-2015-2902	2024-11-21 11:28	2015-11-4	Show	GitHub Exploit DB Packet Storm

274746	-	apache	ambari	Cross-site scripting (XSS) vulnerability in Apache Ambari before 2.1.0 allows remote authenticated cluster operator users to inject arbitrary web script or HTML via the note field in a configuration …	CWE-79 Cross-site Scripting	CVE-2015-3186	2024-11-21 11:28	2015-11-3	Show	GitHub Exploit DB Packet Storm

274747	-	fedoraproject	389_directory_server	389 Directory Server (formerly Fedora Directory Server) before 1.3.3.12 does not enforce the nsSSL3Ciphers preference when creating an sslSocket, which allows remote attackers to have unspecified imp…	CWE-254 7PK - Security Features	CVE-2015-3230	2024-11-21 11:28	2015-10-30	Show	GitHub Exploit DB Packet Storm

274748	-	medicomp	medcin_engine	Multiple stack-based buffer overflows in Medicomp MEDCIN Engine 2.22.20142.166 might allow remote attackers to execute arbitrary code via a crafted packet on port 8190, related to (1) the GetProperty…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2901	2024-11-21 11:28	2015-10-29	Show	GitHub Exploit DB Packet Storm

274749	-	medicomp	medcin_engine	The AddUserFinding add_userfinding2 function in Medicomp MEDCIN Engine before 2.22.20153.226 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified ot…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2900	2024-11-21 11:28	2015-10-29	Show	GitHub Exploit DB Packet Storm

274750	-	medicomp	medcin_engine	Heap-based buffer overflow in the QualifierList retrieve_qualifier_list function in Medicomp MEDCIN Engine before 2.22.20153.226 might allow remote attackers to execute arbitrary code via a long list…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2899	2024-11-21 11:28	2015-10-29	Show	GitHub Exploit DB Packet Storm