Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255171	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255172	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255173	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255174	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255175	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255176	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255177	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265791	9.8	CRITICAL Network	google	chrome	extensions/renderer/render_frame_observer_natives.cc in Google Chrome before 49.0.2623.75 does not properly consider object lifetimes and re-entrancy issues during OnDocumentElementCreated handling, …	NVD-CWE-Other	CVE-2016-1635	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265792	8.8	HIGH Network	google	chrome	Use-after-free vulnerability in the StyleResolver::appendCSSStyleSheet function in WebKit/Source/core/css/resolver/StyleResolver.cpp in Blink, as used in Google Chrome before 49.0.2623.75, allows rem…	NVD-CWE-Other	CVE-2016-1634	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265793	9.8	CRITICAL Network	google	chrome	Use-after-free vulnerability in Blink, as used in Google Chrome before 49.0.2623.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.	NVD-CWE-Other	CVE-2016-1633	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265794	8.8	HIGH Network	google	chrome	The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript co…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1632	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265795	8.8	HIGH Network	google	chrome	The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loop…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1631	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265796	8.8	HIGH Network	google	chrome	The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1630	2024-11-21 11:46	2016-03-6	Show	GitHub Exploit DB Packet Storm

265797	8.8	HIGH Network	cisco	prime_infrastructure	Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mishandled during viewing of a log file, aka Bug ID CSCuw81494.	CWE-20 Improper Input Validation	CVE-2016-1359	2024-11-21 11:46	2016-03-4	Show	GitHub Exploit DB Packet Storm

265798	6.4	MEDIUM Network	cisco	prime_infrastructure	Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1358	2024-11-21 11:46	2016-03-4	Show	GitHub Exploit DB Packet Storm

265799	5.3	MEDIUM Network	cisco	cisco_policy_suite	The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions an…	CWE-200 Information Exposure	CVE-2016-1357	2024-11-21 11:46	2016-03-4	Show	GitHub Exploit DB Packet Storm

265800	3.7	LOW Network	cisco	firesight_system_software	Cisco FireSIGHT System Software 6.1.0 does not use a constant-time algorithm for verifying credentials, which makes it easier for remote attackers to enumerate valid usernames by measuring timing dif…	CWE-287 CWE-255 Improper Authentication Credentials Management	CVE-2016-1356	2024-11-21 11:46	2016-03-4	Show	GitHub Exploit DB Packet Storm