Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255621	7.8	危険	シスコシステムズ	-	Cisco IOS の H.323 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2828	2010-10-12 16:35	2010-09-22	Show	GitHub Exploit DB Packet Storm

255622	6.8	警告	竹村喜人(たけちん)	-	Lhasa における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-2369	2010-10-12 11:03	2010-10-12	Show	GitHub Exploit DB Packet Storm

255623	6.8	警告	Schezo	-	Lhaplus における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2010-2368	2010-10-12 11:02	2010-10-12	Show	GitHub Exploit DB Packet Storm

255624	6.8	警告	アップル	-	Apple Mac OS X の Apple Filing Protocol Server におけるパスワード要求を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-1820	2010-10-8 17:08	2010-09-21	Show	GitHub Exploit DB Packet Storm

255625	5	警告	マイクロソフト	-	Microsoft .NET Framework における View State フォームデータを復号または変更される脆弱性	CWE-310 暗号の問題	CVE-2010-3332	2010-10-8 17:07	2010-09-17	Show	GitHub Exploit DB Packet Storm

255626	2.6	注意	IBM	-	IBM WebSphere Application Server の Web コンテナにおける重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0777	2010-10-8 17:05	2010-05-8	Show	GitHub Exploit DB Packet Storm

255627	5	警告	IBM	-	IBM WebSphere Application Server の Web コンテナにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0776	2010-10-8 17:04	2010-05-8	Show	GitHub Exploit DB Packet Storm

255628	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3686	2010-10-7 16:40	2010-08-11	Show	GitHub Exploit DB Packet Storm

255629	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3685	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

255630	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3091	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311451	6.8	MEDIUM Physics	microsoft	windows_server_2022_23h2 windows_10_1809 windows_server_2019 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_23h2 windows_11_24h2	Windows Mobile Broadband Driver Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43543	2024-10-18 02:23	2024-10-9	Show	GitHub Exploit DB Packet Storm

311452	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39438	2024-10-18 02:19	2024-10-9	Show	GitHub Exploit DB Packet Storm

311453	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39437	2024-10-18 02:18	2024-10-9	Show	GitHub Exploit DB Packet Storm

311454	6.7	MEDIUM Local	google	android	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39436	2024-10-18 02:16	2024-10-9	Show	GitHub Exploit DB Packet Storm

311455	7.5	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43544	2024-10-18 02:16	2024-10-9	Show	GitHub Exploit DB Packet Storm

311456	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin does not encrypt callsigns in messages. It is advised to not use sensitive information in callsigns when using this and previous versions of the plugin. Update to curren…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-45838	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311457	6.5	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin does not use SecureRandom when generating passwords for sharing cryptographic keys. The random function in use makes it easier for attackers to brute force this password…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2024-45723	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311458	6.5	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK plugin uses a weak password for sharing encryption keys via the key broadcast method. If the broadcasted encryption key is captured over RF, and password is cracked via brute f…	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-45374	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311459	6.5	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin uses AES CTR type encryption for short, encrypted messages without any additional integrity checking mechanisms. This leaves messages malleable to an attacker that can a…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2024-43108	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

311460	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin encryption key name is always sent unencrypted when the key is sent over RF through a broadcast message. It is advised to share the encryption key via local QR for highe…	NVD-CWE-Other	CVE-2024-41931	2024-10-18 02:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed