Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254511	9.3	危険	CA Technologies	-	複数の CA 製品の LGServer サービスにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1328	2010-12-24 11:39	2008-04-11	Show	GitHub Exploit DB Packet Storm

254512	10	危険	ターボリナックス ProFTPD Project	-	ProFTPD の pr_netio_telnet_get 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4221	2010-12-22 15:20	2010-10-29	Show	GitHub Exploit DB Packet Storm

254513	7.1	危険	サイバートラスト株式会社 ProFTPD Project ターボリナックス	-	ProFTPD の mod_site_misc モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3867	2010-12-22 15:19	2010-10-29	Show	GitHub Exploit DB Packet Storm

254514	9.3	危険	Mozilla Foundation オラクル	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3174	2010-12-22 15:16	2010-10-19	Show	GitHub Exploit DB Packet Storm

254515	4.3	警告	Mozilla Foundation オラクル	-	複数の Mozilla 製品の SafeJSObjectWrapper 実装における同一生成元ポリシーを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2763	2010-12-22 15:15	2010-09-7	Show	GitHub Exploit DB Packet Storm

254516	4.3	警告	ISC, Inc. レッドハット	-	ISC DHCP サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-3611	2010-12-22 14:25	2010-11-2	Show	GitHub Exploit DB Packet Storm

254517	5	警告	Wireshark	-	Wireshark の ZigBee ZCL 解析部の epan/dissectors/packet-zbee-zcl.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4301	2010-12-22 14:20	2010-11-18	Show	GitHub Exploit DB Packet Storm

254518	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品におけるクロスサイトスクリプティングを誘導される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1210	2010-12-21 16:14	2010-07-20	Show	GitHub Exploit DB Packet Storm

254519	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	複数の Mozilla 製品の XMLDocument::load 関数におけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0182	2010-12-21 16:11	2010-03-30	Show	GitHub Exploit DB Packet Storm

254520	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0179	2010-12-21 16:10	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258911	6.5	MEDIUM Network	ishekar	endoscope_camera_firmware	Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that any malicious user connecting to the device can change the default SSID and p…	CWE-255 Credentials Management	CVE-2017-10718	2024-11-21 12:06	2019-06-18	Show	GitHub Exploit DB Packet Storm

258912	5.5	MEDIUM Local	qualcomm	ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware	A non-secure user may be able to access certain registers in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU,…	NVD-CWE-noinfo	CVE-2017-11004	2024-11-21 12:06	2019-01-4	Show	GitHub Exploit DB Packet Storm

258913	7.5	HIGH Network	zte	zxiptv-ucm_firmware	SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the d…	CWE-89 SQL Injection	CVE-2017-10937	2024-11-21 12:06	2018-07-26	Show	GitHub Exploit DB Packet Storm

258914	7.5	HIGH Network	zte	zxcdn-sns_firmware	SQL injection vulnerability in all versions prior to V4.01.01 of the ZTE ZXCDN-SNS product allows remote attackers to execute arbitrary SQL commands via the aoData parameter, resulting in the disclos…	CWE-89 SQL Injection	CVE-2017-10936	2024-11-21 12:06	2018-07-26	Show	GitHub Exploit DB Packet Storm

258915	7.2	HIGH Network	zte	zxr10_1800-2s_firmware	All versions prior to ZSRV2 V3.00.40 of the ZTE ZXR10 1800-2S products allow remote authenticated users to bypass the original password authentication protection to change other user's password.	NVD-CWE-noinfo	CVE-2017-10935	2024-11-21 12:06	2018-07-26	Show	GitHub Exploit DB Packet Storm

258916	9.8	CRITICAL Network	zte	zxiptv-epg_firmware	All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserializatio…	CWE-502 Deserialization of Untrusted Data	CVE-2017-10934	2024-11-21 12:06	2018-07-26	Show	GitHub Exploit DB Packet Storm

258917	9.8	CRITICAL Network	qualcomm	mdm9206_firmware mdm9607_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_820_firmware sd_835_…	In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 835, a Use After…	CWE-416 Use After Free	CVE-2017-11011	2024-11-21 12:06	2018-04-12	Show	GitHub Exploit DB Packet Storm

258918	9.8	CRITICAL Network	google	android	In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 625, SD 650/52, SD 835, access control left a configuration space unprotected.	NVD-CWE-noinfo	CVE-2017-11010	2024-11-21 12:06	2018-03-31	Show	GitHub Exploit DB Packet Storm

258919	8.8	HIGH Adjacent	corega	cg-wgr_1200_firmware	Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to bypass authentication and change the login password via unspecified vectors.	CWE-306 Missing Authentication for Critical Function	CVE-2017-10854	2024-11-21 12:06	2018-03-10	Show	GitHub Exploit DB Packet Storm

258920	8.8	HIGH Adjacent	corega	cg-wgr_1200_firmware	Buffer overflow in Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to execute arbitrary commands via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-10853	2024-11-21 12:06	2018-03-10	Show	GitHub Exploit DB Packet Storm