Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255581	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255582	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255583	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255584	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255585	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277051	9.8	CRITICAL Network	atutor	atutor	confirm.php in ATutor 2.2 and earlier allows remote attackers to bypass authentication and gain access as an existing user via the auto_login parameter.	CWE-287 Improper Authentication	CVE-2014-9753	2024-11-21 11:21	2020-02-12	Show	GitHub Exploit DB Packet Storm

277052	8.1	HIGH Network	libuv nodejs	libuv node.js	The uv_rwlock_t fallback implementation for Windows XP and Server 2003 in libuv before 1.7.4 does not properly prevent threads from releasing the locks of other threads, which allows attackers to cau…	CWE-362 Race Condition	CVE-2014-9748	2024-11-21 11:21	2020-02-12	Show	GitHub Exploit DB Packet Storm

277053	9.8	CRITICAL Network	nwjs	nw	A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact.	NVD-CWE-noinfo	CVE-2014-9530	2024-11-21 11:21	2020-02-8	Show	GitHub Exploit DB Packet Storm

277054	7.8	HIGH Local	videolan	vlc_media_player	The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9630	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277055	7.8	HIGH Local	videolan	vlc_media_player	Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and…	CWE-120 Classic Buffer Overflow	CVE-2014-9629	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277056	7.8	HIGH Local	videolan	vlc_media_player	The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow a…	CWE-120 Classic Buffer Overflow	CVE-2014-9628	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277057	7.8	HIGH Local	videolan	vlc_media_player	The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows re…	CWE-704 Incorrect Type Conversion or Cast	CVE-2014-9627	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277058	7.8	HIGH Local	videolan	vlc_media_player	Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unsp…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2014-9626	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277059	7.8	HIGH Local	videolan	vlc_media_player	The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remot…	CWE-120 Classic Buffer Overflow	CVE-2014-9625	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm

277060	6.5	MEDIUM Network	tornadoweb	tornado	Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determi…	CWE-203 Information Exposure Through Discrepancy	CVE-2014-9720	2024-11-21 11:21	2020-01-25	Show	GitHub Exploit DB Packet Storm