Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255301	9.3	危険	アップルサイバートラスト株式会社サン・マイクロシステムズレッドハット	-	JDK および JRE の Sun Java SE にある Deployment Toolkit プラグインにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3865	2010-01-26 11:37	2009-11-3	Show	GitHub Exploit DB Packet Storm

255302	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3228	2010-01-26 11:37	2009-10-19	Show	GitHub Exploit DB Packet Storm

255303	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo32 コーデックの ir32_32.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4313	2010-01-25 11:53	2009-12-8	Show	GitHub Exploit DB Packet Storm

255304	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4312	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

255305	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4311	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

255306	9.3	危険	マイクロソフト	-	Indeo コーデックに複数の脆弱性	CWE-119 バッファエラー	CVE-2009-4310	2010-01-25 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

255307	9.3	危険	マイクロソフト	-	Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4309	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

255308	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-4210	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

255309	5	警告	アップルサイバートラスト株式会社 IPsec-Tools レッドハット	-	Ipsec-tools の証明書検証および NAT-Traversal におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1632	2010-01-25 11:48	2009-05-14	Show	GitHub Exploit DB Packet Storm

255310	4	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL のエラーメッセージの変換処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0922	2010-01-25 11:48	2009-03-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248611	9.8	CRITICAL Network	apache	nifi	In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, the proxy chain serialization/deserialization is vulnerable to an injection attack where a carefully crafted username could …	CWE-74 Injection	CVE-2017-5636	2024-11-21 12:28	2017-10-20	Show	GitHub Exploit DB Packet Storm

248612	7.5	HIGH Network	apache	nifi	In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, if an anonymous user request is replicated to another node, the originating node identity is used rather than the "anonymous…	CWE-287 Improper Authentication	CVE-2017-5635	2024-11-21 12:28	2017-10-20	Show	GitHub Exploit DB Packet Storm

248613	9.8	CRITICAL Network	hp	intelligent_management_center_plat	The doFilter method in UrlAccessController in HPE Intelligent Management Center (iMC) PLAT 7.2 E0403P06 allows remote bypass of authentication via unspecified strings in a URI.	CWE-287 Improper Authentication	CVE-2017-5791	2024-11-21 12:28	2017-10-12	Show	GitHub Exploit DB Packet Storm

248614	9.8	CRITICAL Network	hp	loadrunner performance_center	HPE LoadRunner before 12.53 Patch 4 and HPE Performance Center before 12.53 Patch 4 allow remote attackers to execute arbitrary code via unspecified vectors. At least in LoadRunner, this is a libxdru…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5789	2024-11-21 12:28	2017-10-12	Show	GitHub Exploit DB Packet Storm

248615	7.5	HIGH Local	intel	nuc7i7bnh_firmware nuc7i5bnh_firmware nuc7i5bnk_firmware nuc7i3bnh_firmware nuc7i3bnk_firmware	Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enfo…	CWE-269 Improper Privilege Management	CVE-2017-5722	2024-11-21 12:28	2017-10-11	Show	GitHub Exploit DB Packet Storm

248616	7.5	HIGH Local	intel	nuc7i7bnh_firmware nuc7i5bnh_firmware nuc7i5bnk_firmware nuc7i3bnh_firmware nuc7i3bnk_firmware	Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipul…	CWE-20 Improper Input Validation	CVE-2017-5721	2024-11-21 12:28	2017-10-11	Show	GitHub Exploit DB Packet Storm

248617	7.1	HIGH Physics	intel	nuc7i7bnh_firmware nuc7i5bnh_firmware nuc7i5bnk_firmware nuc7i3bnh_firmware nuc7i3bnk_firmware	Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary…	NVD-CWE-noinfo	CVE-2017-5701	2024-11-21 12:28	2017-10-11	Show	GitHub Exploit DB Packet Storm

248618	8.4	HIGH Local	intel	nuc7i7bnh_firmware nuc7i5bnh_firmware nuc7i5bnk_firmware nuc7i3bnh_firmware nuc7i3bnk_firmware	Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator…	CWE-522 Insufficiently Protected Credentials	CVE-2017-5700	2024-11-21 12:28	2017-10-11	Show	GitHub Exploit DB Packet Storm

248619	7.5	HIGH Network	apache debian	zookeeper debian_linux	Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client …	CWE-400 CWE-306 Uncontrolled Resource Consumption Missing Authentication for Critical Function	CVE-2017-5637	2024-11-21 12:28	2017-10-10	Show	GitHub Exploit DB Packet Storm

248620	7.8	HIGH Local	sophos	hitmanpro	A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to escalate p…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6008	2024-11-21 12:28	2017-09-13	Show	GitHub Exploit DB Packet Storm