Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254901	4.3	警告	IBM	-	IBM WAS の Installation Verification Test アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1308	2011-04-5 15:47	2011-02-28	Show	GitHub Exploit DB Packet Storm

254902	10	危険	サイバートラスト株式会社レッドハット	-	Logwatch の logwatch.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1018	2011-04-5 15:20	2011-02-25	Show	GitHub Exploit DB Packet Storm

254903	2.1	注意	レッドハット	-	Control Group Configuration Library の cgre_receive_netlink_msg 関数におけるリソース制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1022	2011-04-5 15:01	2011-03-3	Show	GitHub Exploit DB Packet Storm

254904	7.2	危険	レッドハット	-	Control Group Configuration Library の parse_cgroup_spec 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1006	2011-04-5 14:58	2011-03-3	Show	GitHub Exploit DB Packet Storm

254905	-	-	Wireshark	-	Wireshark にサービス運用妨害 (DoS) の脆弱性	-	-	2011-04-5 14:54	2011-03-3	Show	GitHub Exploit DB Packet Storm

254906	9.3	危険	アップル	-	複数の Apple 製品の LibTIFF におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0191	2011-04-5 14:46	2011-03-3	Show	GitHub Exploit DB Packet Storm

254907	2.9	注意	レッドハットサイバートラスト株式会社 Avahi オラクル	-	Avahi の AvahiDnsPacket 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2244	2011-04-5 14:38	2010-06-29	Show	GitHub Exploit DB Packet Storm

254908	7.5	危険	アップルサイバートラスト株式会社 Python Software Foundation レッドハット	-	Python の rgbimg モジュール内にある RLE デコーダにおける脆弱性	CWE-119 バッファエラー	CVE-2010-1450	2011-04-5 14:27	2010-05-10	Show	GitHub Exploit DB Packet Storm

254909	7.5	危険	アップルサイバートラスト株式会社 Python Software Foundation レッドハット	-	Python の rgbimg モジュール内にある rgbimgmodule.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1449	2011-04-5 14:26	2010-05-10	Show	GitHub Exploit DB Packet Storm

254910	5	警告	アップルサイバートラスト株式会社 Python Software Foundation レッドハット	-	Python の rgbimg モジュールにおけるバッファアンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4134	2011-04-5 14:24	2010-05-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264621	5.5	MEDIUM Local	jasper_project	jasper	The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.	CWE-20 Improper Input Validation	CVE-2016-9394	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264622	5.5	MEDIUM Local	jasper_project	jasper	The jpc_pi_nextrpcl function in jpc_t2cod.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.	NVD-CWE-Other	CVE-2016-9393	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264623	5.5	MEDIUM Local	jasper_project	jasper	The calcstepsizes function in jpc_dec.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.	NVD-CWE-Other	CVE-2016-9392	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264624	7.5	HIGH Network	jasper_project	jasper	The jpc_bitstream_getbits function in jpc_bs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service (assertion failure) via a very large integer.	NVD-CWE-Other	CVE-2016-9391	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264625	5.5	MEDIUM Local	jasper_project	jasper	The jas_seq2d_create function in jas_seq.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.	CWE-20 Improper Input Validation	CVE-2016-9390	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264626	7.5	HIGH Network	jasper_project	jasper	The jpc_irct and jpc_iict functions in jpc_mct.c in JasPer before 1.900.14 allow remote attackers to cause a denial of service (assertion failure).	NVD-CWE-Other	CVE-2016-9389	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264627	5.5	MEDIUM Local	jasper_project canonical	jasper ubuntu_linux	The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (assertion failure) via a crafted image file.	CWE-617 Reachable Assertion	CVE-2016-9388	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264628	7.8	HIGH Local	jasper_project	jasper	Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an asse…	CWE-190 Integer Overflow or Wraparound	CVE-2016-9387	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264629	7.8	HIGH Local	debian canonical apache	debian_linux ubuntu_linux tomcat	The postrm script in the tomcat6 package before 6.0.45+dfsg-1~deb7u3 on Debian wheezy, before 6.0.45+dfsg-1~deb8u1 on Debian jessie, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 L…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-9775	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

264630	7.8	HIGH Local	debian canonical apache	debian_linux ubuntu_linux tomcat	The postinst script in the tomcat6 package before 6.0.45+dfsg-1~deb7u4 on Debian wheezy, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7…	CWE-59 Link Following	CVE-2016-9774	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed