Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254901	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3240	2010-10-28 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

254902	9.3	危険	マイクロソフト	-	Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3238	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

254903	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3236	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

254904	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3233	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

254905	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3232	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254906	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3242	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254907	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3241	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254908	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3239	2010-10-28 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

254909	9.3	危険	マイクロソフト	-	Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3237	2010-10-28 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

254910	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3235	2010-10-27 15:17	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289091	-	microsoft	windows_rt windows_8 windows_rt_8.1 windows_server_2012	Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to cause a denial of service (reboot…	CWE-20 Improper Input Validation	CVE-2013-3903	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289092	-	microsoft	windows_7	Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 SP1 and Windows 7 SP1 on 64-bit platforms allows local users to gain privileges via a crafted…	CWE-399 Resource Management Errors	CVE-2013-3902	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289093	-	microsoft	windows_xp windows_server_2003	win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate addresses, which allows local users to gain privileges via a crafted applicati…	CWE-20 Improper Input Validation	CVE-2013-3899	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289094	-	microsoft	windows_xp windows_server_2003	Stack-based buffer overflow in the LRPC client in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges by operating an LRPC server that sends a crafted LPC port …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3878	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289095	-	novell	suse_lifecycle_management_server	SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate a new secret key when the service starts, which allows remote attackers to defeat intended cryptographic protection mechanisms b…	CWE-310 Cryptographic Issues	CVE-2013-3710	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289096	-	supermicro	intelligent_platform_management_firmware	Multiple stack-based buffer overflows in cgi/close_window.cgi in the web interface in the Intelligent Platform Management Interface (IPMI) with firmware before 3.15 (SMT_X9_315) on Supermicro X9 gene…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3623	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289097	-	supermicro	intelligent_platform_management_firmware	Buffer overflow in logout.cgi in the Intelligent Platform Management Interface (IPMI) with firmware before 3.15 (SMT_X9_315) on Supermicro X9 generation motherboards allows remote authenticated users…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3622	2024-11-21 10:54	2013-12-11	Show	GitHub Exploit DB Packet Storm

289098	-	cmsmadesimple	cms_made_simple	Cross-site scripting (XSS) vulnerability in admin/editevent.php in CMS Made Simple (CMSMS) 1.11.9 allows remote authenticated users with the "Modify Events" permission to inject arbitrary web script …	CWE-79 Cross-site Scripting	CVE-2013-3929	2024-11-21 10:54	2013-12-10	Show	GitHub Exploit DB Packet Storm

289099	-	easytimestudio	easy_file_manager	Directory traversal vulnerability in Easytime Studio Easy File Manager 1.1 for iOS allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) to the default URI.	CWE-22 Path Traversal	CVE-2013-3921	2024-11-21 10:54	2013-12-6	Show	GitHub Exploit DB Packet Storm

289100	-	novell	open_enterprise_server	The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 (OES 2) Linux, and OES 11 Linux Gold and SP1, does not make the intended SSL_free and SSL_s…	CWE-20 Improper Input Validation	CVE-2013-3707	2024-11-21 10:54	2013-12-2	Show	GitHub Exploit DB Packet Storm