Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255221	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255222	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255223	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255224	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255225	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255226	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255227	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248061	9.8	CRITICAL Network	apache	impala	It was noticed that a malicious process impersonating an Impala daemon in Apache Impala (incubating) 2.7.0 to 2.8.0 could cause Impala daemons to skip authentication checks when Kerberos is enabled (…	CWE-287 Improper Authentication	CVE-2017-5640	2024-11-21 12:28	2017-07-11	Show	GitHub Exploit DB Packet Storm

248062	8.8	HIGH Network	bestpractical	request_tracker	The dashboard subscription interface in Request Tracker (RT) 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 might allow remote authenticated users with certain privileges to execute a…	CWE-20 Improper Input Validation	CVE-2017-5944	2024-11-21 12:28	2017-07-4	Show	GitHub Exploit DB Packet Storm

248063	8.8	HIGH Network	bestpractical	request_tracker	Request Tracker (RT) 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 allows remote attackers to obtain sensitive information about cross-site request forgery (CSRF) verification tokens…	CWE-352 Origin Validation Error	CVE-2017-5943	2024-11-21 12:28	2017-07-4	Show	GitHub Exploit DB Packet Storm

248064	7.5	HIGH Network	sierra_wireless	airlink_raven_xe_firmware airlink_raven_xt_firmware	An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive informati…	CWE-200 Information Exposure	CVE-2017-6046	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248065	9.8	CRITICAL Network	sierra_wireless	airlink_raven_xe_firmware airlink_raven_xt_firmware	An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Several files and directories can…	CWE-306 Missing Authentication for Critical Function	CVE-2017-6044	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248066	8.8	HIGH Network	sierra_wireless	airlink_raven_xe_firmware airlink_raven_xt_firmware	A Cross-Site Request Forgery issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Affected devices do not verify…	CWE-352 Origin Validation Error	CVE-2017-6042	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248067	5.3	MEDIUM Network	belden_hirschmann	gecko_lite_managed_switch_firmware	An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. Non-sensitive information can be obtained anonymously.	CWE-200 Information Exposure	CVE-2017-6040	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248068	7.1	HIGH Network	belden_hirschmann	gecko_lite_managed_switch_firmware	A Cross-Site Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web application does not sufficiently verify that requests wer…	CWE-352 Origin Validation Error	CVE-2017-6038	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248069	9.8	CRITICAL Network	marel	a320_firmware a325_firmware a371_firmware a520_master_firmware a520_slave_firmware a530_firmware a542_firmware a571_firmware check_bin_grader_firmware flowlineqc_t376_firmw…	An Unrestricted Upload issue was discovered in Marel Food Processing Systems M3000 terminal associated with the following systems: A320, A325, A371, A520 Master, A520 Slave, A530, A542, A571, Check B…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-6041	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm

248070	6.5	MEDIUM Network	belden_hirschmann	gecko_lite_managed_switch_firmware	A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. The web server receives a request, but does not sufficiently veri…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-6036	2024-11-21 12:28	2017-06-30	Show	GitHub Exploit DB Packet Storm