Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254921	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3216	2010-10-26 15:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

254922	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3215	2010-10-26 15:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

254923	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2750	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254924	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2748	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

254925	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2747	2010-10-26 15:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

254926	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2741	2010-10-26 15:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

254927	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2740	2010-10-26 15:29	2010-10-12	Show	GitHub Exploit DB Packet Storm

254928	7.2	危険	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2744	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

254929	4.9	警告	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2549	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

254930	6.5	警告	IBM	-	Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0462	2010-10-26 15:24	2010-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255861	7.5	HIGH Network	octopus	octopus_deploy	Octopus before 3.17.7 allows attackers to obtain sensitive cleartext information by reading a variable JSON file in certain situations involving Offline Drop Targets.	CWE-311 Missing Encryption of Sensitive Data	CVE-2017-15609	2024-11-21 12:14	2017-10-19	Show	GitHub Exploit DB Packet Storm

255862	7.5	HIGH Network	gnu	libextractor	In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the EXTRACTOR_nsfe_extract_method function in plugins/nsfe_extractor.c, leading to an infinite loop for a crafted s…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-15602	2024-11-21 12:14	2017-10-19	Show	GitHub Exploit DB Packet Storm

255863	7.5	HIGH Network	gnu	libextractor	In GNU Libextractor 1.4, there is a heap-based buffer overflow in the EXTRACTOR_png_extract_method function in plugins/png_extractor.c, related to processiTXt and stndup.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-15601	2024-11-21 12:14	2017-10-19	Show	GitHub Exploit DB Packet Storm

255864	7.5	HIGH Network	gnu	libextractor	In GNU Libextractor 1.4, there is a NULL Pointer Dereference in the EXTRACTOR_nsf_extract_method function of plugins/nsf_extractor.c.	CWE-476 NULL Pointer Dereference	CVE-2017-15600	2024-11-21 12:14	2017-10-19	Show	GitHub Exploit DB Packet Storm

255865	6.5	MEDIUM Network	3cx	3cx	In the 3CX Phone System 15.5.3554.1, the Management Console typically listens to port 5001 and is prone to a directory traversal attack: "/api/RecordingList/DownloadRecord?file=" and "/api/SupportInf…	CWE-22 Path Traversal	CVE-2017-15359	2024-11-21 12:14	2017-10-19	Show	GitHub Exploit DB Packet Storm

255866	6.0	MEDIUM Local	xen	xen	An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest OS users to cause a denial of service (prevent physical CPU usage) because of lock mishandling upon detection of an add-to-physma…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-15596	2024-11-21 12:14	2017-10-18	Show	GitHub Exploit DB Packet Storm

255867	8.8	HIGH Local	xen	xen	An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-15595	2024-11-21 12:14	2017-10-18	Show	GitHub Exploit DB Packet Storm

255868	8.8	HIGH Local	xen	xen	An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotpl…	NVD-CWE-noinfo	CVE-2017-15594	2024-11-21 12:14	2017-10-18	Show	GitHub Exploit DB Packet Storm

255869	6.5	MEDIUM Local	xen	xen	An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference counts are mishandled.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-15593	2024-11-21 12:14	2017-10-18	Show	GitHub Exploit DB Packet Storm

255870	8.8	HIGH Local	xen	xen	An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishan…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2017-15592	2024-11-21 12:14	2017-10-18	Show	GitHub Exploit DB Packet Storm