Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255371	7.8	危険	サイバートラスト株式会社 Avahi レッドハット	-	Avahi の originates_from_local_legacy_unicast_socket 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0758	2010-08-10 18:49	2009-03-3	Show	GitHub Exploit DB Packet Storm

255372	6.8	警告	サン・マイクロシステムズ 68k.org	-	audiofile の msadpcm.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5824	2010-08-10 18:49	2009-01-2	Show	GitHub Exploit DB Packet Storm

255373	2.4	注意	オラクル	-	Oracle Sun Java System Application Server および Oracle GlassFish Enterprise Server の GUI における脆弱性	CWE-noinfo 情報不足	CVE-2010-2397	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255374	3	注意	オラクル	-	Oracle Solaris Studio における脆弱性	CWE-noinfo 情報不足	CVE-2010-2374	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255375	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise における脆弱性	CWE-noinfo 情報不足	CVE-2009-3762	2010-08-9 16:49	2010-07-13	Show	GitHub Exploit DB Packet Storm

255376	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3764	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255377	4.3	警告	オラクル	-	Oracle OpenSSO Enterprise の Access Manager / OpenSSO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3763	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255378	5	警告	オラクル	-	Oracle Sun Convergence における脆弱性	CWE-noinfo 情報不足	CVE-2010-0914	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255379	5.8	警告	オラクル	-	Oracle Sun Java System Web Proxy Server の管理サーバにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2385	2010-08-9 16:48	2010-07-13	Show	GitHub Exploit DB Packet Storm

255380	2.1	注意	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise Campus Solutions コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2403	2010-08-6 18:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271031	6.5	MEDIUM Network	isc	bind	apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed …	CWE-20 Improper Input Validation	CVE-2015-8704	2024-11-21 11:38	2016-01-21	Show	GitHub Exploit DB Packet Storm

271032	9.8	CRITICAL Network	php	php	Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP 7.x before 7.0.1 allows remote attackers to execute arbitrary code via format string specifiers in a …	CWE-134 Use of Externally-Controlled Format String	CVE-2015-8617	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

271033	8.6	HIGH Network	php	php	Use-after-free vulnerability in the Collator::sortWithSortKeys function in ext/intl/collator/collator_sort.c in PHP 7.x before 7.0.1 allows remote attackers to cause a denial of service (application …	NVD-CWE-Other	CVE-2015-8616	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

271034	5.4	MEDIUM Network	gajim	gajim	Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.	CWE-20 Improper Input Validation	CVE-2015-8688	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

271035	6.1	MEDIUM Network	dolibarr	dolibarr	Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) external calendar url or (2) the ba…	CWE-79 Cross-site Scripting	CVE-2015-8685	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

271036	6.2	MEDIUM Local	huawei	s5300_firmware	Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password informa…	CWE-255 Credentials Management	CVE-2015-8675	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

271037	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.	CWE-310 Cryptographic Issues	CVE-2015-8281	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

271038	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.	CWE-200 Information Exposure	CVE-2015-8280	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

271039	8.6	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8279	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

271040	6.5	MEDIUM Adjacent	sophos isc debian canonical	unified_threat_management_up2date dhcp debian_linux ubuntu_linux	ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.	CWE-20 Improper Input Validation	CVE-2015-8605	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm