Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254941 2.6 注意 オラクル - Windows 上で稼働する Oracle Database Server の Network Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0900 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
254942 4.3 警告 オラクル - Oracle Database Server の Application Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0892 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
254943 6 警告 オラクル - Oracle Database Server の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0902 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
254944 7.8 危険 オラクル - Windows 上で稼働する Oracle Database Server の Net Foundation Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0903 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
254945 7.8 危険 オラクル - Oracle Database Server の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0911 2010-08-2 19:30 2010-07-13 Show GitHub Exploit DB Packet Storm
254946 5.5 警告 PostgreSQL.org
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット		 - PostgreSQL における任意のパラメータ設定を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1975 2010-08-2 17:13 2010-05-19 Show GitHub Exploit DB Packet Storm
254947 5 警告 MySQL AB - MySQL の mysql_uninstall_plugin 関数における任意のプラグインを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1621 2010-08-2 17:13 2010-04-6 Show GitHub Exploit DB Packet Storm
254948 3.5 注意 オラクル - Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2381 2010-07-30 17:43 2010-07-13 Show GitHub Exploit DB Packet Storm
254949 3.5 注意 オラクル - Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0081 2010-07-30 17:42 2010-07-13 Show GitHub Exploit DB Packet Storm
254950 4.3 警告 オラクル - Oracle Fusion Middleware の Wireless コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0835 2010-07-30 17:42 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255611 6.5 MEDIUM
Network 		gridgain gridgain Directory traversal vulnerability in the Visor GUI Console in GridGain before 1.7.16, 1.8.x before 1.8.12, 1.9.x before 1.9.7, and 8.x before 8.1.5 allows remote authenticated users to read arbitrary… CWE-22
Path Traversal 		CVE-2017-14614 2024-11-21 12:13 2017-10-10 Show GitHub Exploit DB Packet Storm
255612 7.5 HIGH
Network 		digium asterisk
certified_asterisk 		In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allo… CWE-200
Information Exposure 		CVE-2017-14603 2024-11-21 12:13 2017-10-10 Show GitHub Exploit DB Packet Storm
255613 5.4 MEDIUM
Network 		identicard two-reader_controller_configuration_manager IDenticard Two-Reader Controller Configuration Manager 1.18.8 (396) is vulnerable to Stored Cross-Site Scripting (XSS) via the notes field in /~user_handler?file=logged_in.shtm (aka the edit user pag… CWE-79
Cross-site Scripting 		CVE-2017-14973 2024-11-21 12:13 2017-10-9 Show GitHub Exploit DB Packet Storm
255614 7.5 HIGH
Network 		infocus mondopad InFocus Mondopad 2.2.08 is vulnerable to authentication bypass when accessing uploaded files by entering Control-Alt-Delete, and then using Task Manager to reach a file. CWE-287
Improper Authentication 		CVE-2017-14972 2024-11-21 12:13 2017-10-9 Show GitHub Exploit DB Packet Storm
255615 5.5 MEDIUM
Local 		infocuscorp infocus_mondopad Infocus Mondopad 2.2.08 is vulnerable to a Hashed Credential Disclosure vulnerability. The attacker provides a crafted Microsoft Office document containing a link that has a UNC pathname associated w… CWE-200
Information Exposure 		CVE-2017-14971 2024-11-21 12:13 2017-10-9 Show GitHub Exploit DB Packet Storm
255616 5.5 MEDIUM
Local 		lame_project lame LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fill_buffer in libmp3lame/util.c, related to lame_encode_buffer_sample_t in libmp3lame/… CWE-125
Out-of-bounds Read 		CVE-2017-15045 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
255617 5.9 MEDIUM
Network 		golang go An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. T… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2017-15042 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
255618 9.8 CRITICAL
Network 		golang
debian
redhat 		go
debian_linux
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_eus
enterprise_linux_tus
developer_tools 		Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but … NVD-CWE-noinfo
CVE-2017-15041 2024-11-21 12:13 2017-10-6 Show GitHub Exploit DB Packet Storm
255619 8.1 HIGH
Network 		freebsd freebsd In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition with a resultant out-of-bounds read, because it can cause t2p->t_name strings to lack a final '\0' cha… CWE-362
CWE-125
Race Condition
Out-of-bounds Read 		CVE-2017-15037 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
255620 7.5 HIGH
Network 		emtec pyrobatchftp EmTec PyroBatchFTP before 3.18 allows remote servers to cause a denial of service (application crash). CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-15035 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm