Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254721	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

254722	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

254723	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

254724	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

254725	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

254726	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

254727	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

254728	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

254729	6.9	警告	サイバートラスト株式会社レッドハット acpid	-	acpid のレッドハットパッチにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4033	2010-01-21 11:43	2009-12-7	Show	GitHub Exploit DB Packet Storm

254730	10	危険	アドビシステムズ	-	Adobe Illustrator における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3952	2010-01-21 11:43	2010-01-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292121	-	gnu	glibc	Integer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary…	CWE-189 Numeric Errors	CVE-2012-4412	2024-11-21 10:42	2013-10-10	Show	GitHub Exploit DB Packet Storm

292122	-	cisco	nx-os	Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4141	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292123	-	cisco	nx-os	The CLI parser in Cisco NX-OS allows local users to bypass intended access restrictions, and overwrite or create arbitrary files, via shell output redirection, aka Bug IDs CSCts56672 and CSCts56669.	CWE-20 Improper Input Validation	CVE-2012-4122	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292124	-	cisco	nx-os	The BGP implementation in Cisco NX-OS does not properly filter AS paths, which allows remote attackers to cause a denial of service (BGP service reset and resync) via a malformed UPDATE message, aka …	CWE-20 Improper Input Validation	CVE-2012-4098	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292125	-	cisco	nx-os	The RIP service engine in Cisco NX-OS allows remote attackers to cause a denial of service (engine restart) via a malformed (1) RIPv4 or (2) RIPv6 message, aka Bug ID CSCtj73415.	CWE-20 Improper Input Validation	CVE-2012-4091	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292126	-	cisco	nx-os nexus_7000 nexus_7000_10-slot nexus_7000_18-slot nexus_7000_9-slot	The management interface in Cisco NX-OS on Nexus 7000 devices allows remote authenticated users to obtain sensitive configuration-file information by leveraging the network-operator role, aka Bug ID …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4090	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292127	-	cisco	unified_computing_system	Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the…	CWE-352 Origin Validation Error	CVE-2012-4084	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292128	-	cisco	nx-os	Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell metacharacters in unspecified command parameters, aka Bug IDs CSCtf19827 and CSCtf27788.	CWE-78 OS Command	CVE-2012-4075	2024-11-21 10:42	2013-10-5	Show	GitHub Exploit DB Packet Storm

292129	-	cisco	unified_computing_system	The high-availability service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) does not properly bind the cluster service to the management interface, which allows remote …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4136	2024-11-21 10:42	2013-10-3	Show	GitHub Exploit DB Packet Storm

292130	-	cisco	unified_computing_system	The create certreq command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bu…	CWE-20 Improper Input Validation	CVE-2012-4111	2024-11-21 10:42	2013-10-3	Show	GitHub Exploit DB Packet Storm