Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254961	7.5	危険	シスコシステムズ	-	Cisco Content Services Switch における HTTP Request Smuggling 攻撃の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1576	2010-07-27 17:29	2010-07-2	Show	GitHub Exploit DB Packet Storm

254962	7.5	危険	シスコシステムズ	-	Cisco Content Services Switch における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1575	2010-07-27 17:28	2010-07-2	Show	GitHub Exploit DB Packet Storm

254963	6.8	警告	サイバートラスト株式会社 The Perl Foundation レッドハット	-	Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4829	2010-07-26 18:29	2007-11-2	Show	GitHub Exploit DB Packet Storm

254964	9.3	危険	マイクロソフト	-	Microsoft Windows Help and Support Center に脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2010-1885	2010-07-23 18:55	2010-06-10	Show	GitHub Exploit DB Packet Storm

254965	4.9	警告	マイクロソフト	-	Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2009-3678	2010-07-23 18:55	2010-05-14	Show	GitHub Exploit DB Packet Storm

254966	9.3	危険	サン・マイクロシステムズレッドハットリアルネットワークス	-	Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性	CWE-119 バッファエラー	CVE-2009-4247	2010-07-23 18:55	2010-01-19	Show	GitHub Exploit DB Packet Storm

254967	10	危険	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-4548	2010-07-22 20:51	2007-08-13	Show	GitHub Exploit DB Packet Storm

254968	5	警告	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の management EJB における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5085	2010-07-22 20:51	2007-09-6	Show	GitHub Exploit DB Packet Storm

254969	7.5	危険	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の SQLLoginModule における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5797	2010-07-22 20:51	2007-10-22	Show	GitHub Exploit DB Packet Storm

254970	6.8	警告	InterSect Alliance International Pty	-	Snare Agent の Web インターフェースにクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2594	2010-07-22 20:51	2010-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251681	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged contex…	CWE-416 Use After Free	CVE-2017-2353	2024-11-21 12:23	2017-02-20	Show	GitHub Exploit DB Packet Storm

251682	4.6	MEDIUM Physics	apple	iphone_os watchos	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "Unlock with iPhone" component, which allows attackers to by…	NVD-CWE-noinfo	CVE-2017-2352	2024-11-21 12:23	2017-02-20	Show	GitHub Exploit DB Packet Storm

251683	2.4	LOW Physics	apple	iphone_os	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue involves the "WiFi" component, which allows physically proximate attackers to bypass the activation-lock pr…	CWE-20 Improper Input Validation	CVE-2017-2351	2024-11-21 12:23	2017-02-20	Show	GitHub Exploit DB Packet Storm

251684	6.5	MEDIUM Network	apple webkitgtk	iphone_os safari tvos webkitgtk\+	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allow…	CWE-200 Information Exposure	CVE-2017-2350	2024-11-21 12:23	2017-02-20	Show	GitHub Exploit DB Packet Storm

251685	6.5	MEDIUM Local	linux	linux_kernel	The nested_vmx_check_vmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8 improperly emulates the VMXON instruction, which allows KVM L1 guest OS users to cause a denial of service …	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-2596	2024-11-21 12:23	2017-02-6	Show	GitHub Exploit DB Packet Storm

251686	8.4	HIGH Local	linux	linux_kernel	The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a…	NVD-CWE-noinfo	CVE-2017-2583	2024-11-21 12:23	2017-02-6	Show	GitHub Exploit DB Packet Storm

251687	6.1	MEDIUM Network	moodle	moodle	In Moodle 3.x, there is XSS in the assignment submission page.	CWE-79 Cross-site Scripting	CVE-2017-2578	2024-11-21 12:23	2017-01-20	Show	GitHub Exploit DB Packet Storm

251688	5.3	MEDIUM Network	moodle	moodle	In Moodle 2.x and 3.x, there is incorrect sanitization of attributes in forums.	CWE-20 Improper Input Validation	CVE-2017-2576	2024-11-21 12:23	2017-01-20	Show	GitHub Exploit DB Packet Storm

251689	7.1	HIGH Local	linux	linux_kernel	arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free) via a crafted application …	CWE-200 CWE-416 Information Exposure Use After Free	CVE-2017-2584	2024-11-21 12:23	2017-01-15	Show	GitHub Exploit DB Packet Storm

251690	4.7	MEDIUM Network	zimbra	zm-ajax	A vulnerability has been found in Zimbra zm-ajax up to 8.8.1 and classified as problematic. Affected by this vulnerability is the function XFormItem.prototype.setError of the file WebRoot/js/ajax/dwt…	-	CVE-2017-20188	2024-11-21 12:22	2024-01-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed