Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254841	5	警告	VMware	-	VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-3707	2010-05-7 17:26	2009-10-16	Show	GitHub Exploit DB Packet Storm

254842	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-1565	2010-05-7 17:26	2010-04-9	Show	GitHub Exploit DB Packet Storm

254843	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1564	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

254844	10	危険	VMware	-	VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2009-3732	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

254845	7.2	危険	VMware	-	複数の VMware 製品の vmrun における権限昇格の脆弱性	CWE-134 書式文字列の問題	CVE-2010-1139	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

254846	5	警告	VMware	-	複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1138	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

254847	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1142	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

254848	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

254849	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

254850	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278311	-	redhat	jboss_fuse	Red Hat JBoss Fuse before 6.2.0 allows remote authenticated users to bypass intended restrictions and access the HawtIO console by leveraging an account defined in the users.properties file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-8175	2024-11-21 11:18	2015-07-9	Show	GitHub Exploit DB Packet Storm

278312	-	openssl	openssl	The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h frees data structures without considering that application data can arrive betw…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8176	2024-11-21 11:18	2015-06-13	Show	GitHub Exploit DB Packet Storm

278313	-	comodo	geekbuddy	Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC server, which allows local users to gain privileges by connecting to the server.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-7872	2024-11-21 11:18	2015-06-9	Show	GitHub Exploit DB Packet Storm

278314	-	debian apache	debian_linux tomcat	The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemen…	CWE-284 Improper Access Control	CVE-2014-7810	2024-11-21 11:18	2015-06-8	Show	GitHub Exploit DB Packet Storm

278315	-	apple icu-project	watchos mac_os_x international_components_for_unicode	The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type…	CWE-189 Numeric Errors	CVE-2014-8147	2024-11-21 11:18	2015-05-26	Show	GitHub Exploit DB Packet Storm

278316	-	apple icu-project	watchos iphone_os itunes mac_os_x international_components_for_unicode	The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track d…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8146	2024-11-21 11:18	2015-05-26	Show	GitHub Exploit DB Packet Storm

278317	-	infocus	in3128hd_firmware	The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the …	NVD-CWE-Other	CVE-2014-8384	2024-11-21 11:18	2015-05-19	Show	GitHub Exploit DB Packet Storm

278318	-	infocus	in3128hd_firmware	The InFocus IN3128HD projector with firmware 0.26 allows remote attackers to bypass authentication via a direct request to main.html.	NVD-CWE-Other	CVE-2014-8383	2024-11-21 11:18	2015-05-19	Show	GitHub Exploit DB Packet Storm

278319	-	redhat suse	network_satellite manager	XML external entity (XXE) in the RPC interface in Spacewalk and Red Hat Network (RHN) Satellite 5.7 and earlier allows remote attackers to read arbitrary files and possibly have other unspecified imp…	NVD-CWE-Other	CVE-2014-8162	2024-11-21 11:18	2015-05-14	Show	GitHub Exploit DB Packet Storm

278320	-	redhat	jbpm drools	XML external entity (XXE) vulnerability in Drools and jBPM before 6.2.0 allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted BPMN2 file.	NVD-CWE-Other	CVE-2014-8125	2024-11-21 11:18	2015-04-22	Show	GitHub Exploit DB Packet Storm