Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254511	4.1	警告	Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0306	2010-03-4 13:41	2010-02-9	Show	GitHub Exploit DB Packet Storm

254512	5	警告	レッドハットリアルネットワークス	-	RealNetworks HelixPlayer および RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0417	2010-03-4 13:40	2010-02-18	Show	GitHub Exploit DB Packet Storm

254513	7.5	危険	レッドハットリアルネットワークス	-	RealNetworks HelixPlayer および RealPlayer の Unescape 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0416	2010-03-4 13:40	2010-02-18	Show	GitHub Exploit DB Packet Storm

254514	9.3	危険	マイクロソフト	-	Microsoft Windows の Microsoft Paint における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0028	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

254515	7.2	危険	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-Other その他	CVE-2010-0233	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

254516	6.3	警告	マイクロソフト	-	Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0035	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

254517	7.1	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-0021	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

254518	10	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性	CWE-264 CWE-310	CVE-2010-0231	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

254519	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0022	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

254520	9	危険	マイクロソフト	-	Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性	CWE-20 CWE-94	CVE-2010-0020	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277391	8.8	HIGH Network	dasanzhone	znid_2426a_firmware	backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the s…	CWE-255 Credentials Management	CVE-2014-8357	2024-11-21 11:18	2017-10-18	Show	GitHub Exploit DB Packet Storm

277392	7.5	HIGH Network	aircrack-ng	aircrack-ng	network.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter.	CWE-20 Improper Input Validation	CVE-2014-8324	2024-11-21 11:18	2017-10-17	Show	GitHub Exploit DB Packet Storm

277393	7.5	HIGH Network	aircrack-ng	aircrack-ng	buddy-ng.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter.	CWE-20 Improper Input Validation	CVE-2014-8323	2024-11-21 11:18	2017-10-17	Show	GitHub Exploit DB Packet Storm

277394	6.1	MEDIUM Network	post_highlights_projects	post_highlights	Cross-site scripting (XSS) vulnerability in the post highlights plugin before 2.6.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the txt parameter in a headline ac…	CWE-79 Cross-site Scripting	CVE-2014-8087	2024-11-21 11:18	2017-10-17	Show	GitHub Exploit DB Packet Storm

277395	7.5	HIGH Network	ovirt redhat	ovirt ovirt-engine	oVirt 3.2.2 through 3.5.0 does not invalidate the restapi session after logout from the webadmin, which allows remote authenticated users with knowledge of another user's session data to gain that us…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-7851	2024-11-21 11:18	2017-10-17	Show	GitHub Exploit DB Packet Storm

277396	8.8	HIGH Network	ovirt	ovirt-node	ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, …	CWE-134 Use of Externally-Controlled Format String	CVE-2014-8170	2024-11-21 11:18	2017-09-26	Show	GitHub Exploit DB Packet Storm

277397	7.8	HIGH Local	fso-frameworkd_project fso-gsmd_project fso-usaged_project phonefsod_project	fso-frameworkd fso-gsmd fso-usaged phonefsod	The D-Bus security policy files in /etc/dbus-1/system.d/*.conf in fso-gsmd 0.12.0-3, fso-frameworkd 0.9.5.9+git20110512-4, and fso-usaged 0.12.0-2 as packaged in Debian, the upstream cornucopia.git (…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-8156	2024-11-21 11:18	2017-09-26	Show	GitHub Exploit DB Packet Storm

277398	9.8	CRITICAL Network	redhat	edeploy	eDeploy makes it easier for remote attackers to execute arbitrary code by leveraging use of HTTP to download files.	CWE-200 Information Exposure	CVE-2014-8174	2024-11-21 11:18	2017-09-20	Show	GitHub Exploit DB Packet Storm

277399	7.5	HIGH Network	apache	wicket	Apache Wicket before 1.5.13, 6.x before 6.19.0, and 7.x before 7.0.0-M5 make it easier for attackers to defeat a cryptographic protection mechanism and predict encrypted URLs by leveraging use of Cry…	CWE-310 Cryptographic Issues	CVE-2014-7808	2024-11-21 11:18	2017-09-16	Show	GitHub Exploit DB Packet Storm

277400	6.5	MEDIUM Network	redhat	satellite	Directory traversal vulnerability in the XMLRPC interface in Red Hat Satellite 5.	CWE-22 Path Traversal	CVE-2014-8163	2024-11-21 11:18	2017-08-29	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed