Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255361 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255362 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255363 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255364 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255365 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
255366 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
255367 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
282081 - qemu
debian
canonical 		qemu
debian_linux
ubuntu_linux 		The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling. CWE-269
 Improper Privilege Management 		CVE-2014-3689 2024-11-21 11:08 2014-11-15 Show GitHub Exploit DB Packet Storm
282082 - redhat openshift Red Hat OpenShift Enterprise before 2.2 does not properly restrict access to gears, which allows remote attackers to access the network resources of arbitrary gears via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3674 2024-11-21 11:08 2014-11-14 Show GitHub Exploit DB Packet Storm
282083 - redhat openshift Red Hat OpenShift Enterprise before 2.2 allows local users to obtain IP address and port number information for remote systems by reading /proc/net/tcp. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3602 2024-11-21 11:08 2014-11-14 Show GitHub Exploit DB Packet Storm
282084 7.5 HIGH
Network 		linux
redhat
canonical
debian
opensuse
suse
oracle 		linux_kernel
enterprise_linux
enterprise_mrg
ubuntu_linux
debian_linux
evergreen
linux_enterprise_workstation_extension
suse_linux_enterprise_server
linux_enterprise_software_… 		The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and ne… CWE-20
 Improper Input Validation  		CVE-2014-3673 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282085 5.5 MEDIUM
Local 		linux
opensuse
suse
novell
redhat
debian
canonical 		linux_kernel
evergreen
linux_enterprise_real_time_extension
suse_linux_enterprise_server
suse_linux_enterprise_desktop
linux_enterprise_workstation_extension
linux_enterprise_softwa… 		arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allow… CWE-400
 Uncontrolled Resource Consumption 		CVE-2014-3690 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282086 7.5 HIGH
Network 		linux
redhat
canonical
opensuse
novell
suse
debian
oracle 		linux_kernel
enterprise_mrg
ubuntu_linux
evergreen
suse_linux_enterprise_server
linux_enterprise_real_time_extension
debian_linux
suse_linux_enterprise_desktop
linux_enterpris… 		The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplic… CWE-400
 Uncontrolled Resource Consumption 		CVE-2014-3687 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282087 5.5 MEDIUM
Local 		linux
redhat
canonical
debian
opensuse
suse
oracle 		linux_kernel
enterprise_linux
ubuntu_linux
debian_linux
evergreen
suse_linux_enterprise_server
linux 		arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a c… NVD-CWE-noinfo
CVE-2014-3647 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282088 5.5 MEDIUM
Local 		linux
redhat
canonical
debian
opensuse
suse 		linux_kernel
enterprise_linux
ubuntu_linux
debian_linux
evergreen
suse_linux_enterprise_server 		arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest O… NVD-CWE-noinfo
CVE-2014-3646 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282089 - linux linux_kernel arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.12 does not have an exit handler for the INVEPT instruction, which allows guest OS users to cause a denial of service (guest OS cr… CWE-20
 Improper Input Validation  		CVE-2014-3645 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm
282090 4.7 MEDIUM
Local 		linux
redhat
canonical
debian 		linux_kernel
enterprise_linux
ubuntu_linux
debian_linux 		Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS cras… CWE-362
Race Condition 		CVE-2014-3611 2024-11-21 11:08 2014-11-10 Show GitHub Exploit DB Packet Storm