Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255171	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255172	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255173	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255174	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255175	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255176	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255177	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255561	7.5	HIGH Network	kaspersky	internet_security	In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted.	CWE-311 Missing Encryption of Sensitive Data	CVE-2017-12817	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255562	9.8	CRITICAL Network	kaspersky	internet_security	In Kaspersky Internet Security for Android 11.12.4.1622, some of application exports activities have weak permissions, which might be used by a malware application to get unauthorized access to the p…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-12816	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255563	8.8	HIGH Network	polycom	unified_communications_software	Polycom SoundStation IP, VVX, and RealPresence Trio that are running software older than UCS 4.0.12, 5.4.5 rev AG, 5.4.7, 5.5.2, or 5.6.0 are affected by a vulnerability in their UCS web application.…	CWE-200 Information Exposure	CVE-2017-12857	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255564	9.8	CRITICAL Network	spidercontrol	scada_microbrowser	A Stack-based Buffer Overflow issue was discovered in SpiderControl SCADA MicroBrowser Versions 1.6.30.144 and prior. Opening a maliciously crafted html file may cause a stack overflow.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12707	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255565	7.5	HIGH Network	spidercontrol	scada_web_server	A Directory Traversal issue was discovered in SpiderControl SCADA Web Server. An attacker may be able to use a simple GET request to perform a directory traversal into system files.	CWE-22 Path Traversal	CVE-2017-12694	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255566	5.3	MEDIUM Local	westermo	mrd-305-din_firmware mrd-315-din_firmware mrd-355-din_firmware mrd-455-din_firmware	A Use of Hard-Coded Credentials issue was discovered in MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The device utilizes hard-coded credentials,…	CWE-798 Use of Hard-coded Credentials	CVE-2017-12709	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255567	8.8	HIGH Network	westermo	mrd-305-din_firmware mrd-315-din_firmware mrd-355-din_firmware mrd-455-din_firmware	A Cross-Site Request Forgery (CSRF) issue was discovered in Westermo MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The application does not verif…	CWE-352 Origin Validation Error	CVE-2017-12703	2024-11-21 12:10	2017-08-26	Show	GitHub Exploit DB Packet Storm

255568	5.4	MEDIUM Network	paessler	prtg_network_monitor	Cross-site scripting (XSS-STORED) vulnerability in the DEVICES OR SENSORS functionality in Paessler PRTG Network Monitor before 17.3.33.2654 allows authenticated remote attackers to inject arbitrary …	CWE-79 Cross-site Scripting	CVE-2017-12879	2024-11-21 12:10	2017-08-25	Show	GitHub Exploit DB Packet Storm

255569	9.8	CRITICAL Network	nexusphp	nexusphp	SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the delcheater parameter to cheaterbox.php.	CWE-89 SQL Injection	CVE-2017-12679	2024-11-21 12:10	2017-08-25	Show	GitHub Exploit DB Packet Storm

255570	7.5	HIGH Network	gnu canonical debian	cvs ubuntu_linux debian_linux	CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand…	NVD-CWE-noinfo	CVE-2017-12836	2024-11-21 12:10	2017-08-24	Show	GitHub Exploit DB Packet Storm