Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255841	3.3	注意	サイバートラスト株式会社 Wireshark レッドハット	-	Wireshark の SMB 解析部におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2283	2010-09-6 17:46	2010-06-9	Show	GitHub Exploit DB Packet Storm

255842	4.3	警告	サイバートラスト株式会社 Wireshark レッドハット	-	Wireshark の DOCSIS 解析部におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1455	2010-09-6 17:46	2010-05-5	Show	GitHub Exploit DB Packet Storm

255843	7.8	危険	シスコシステムズ	-	Cisco IOS の TCP 接続におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2827	2010-09-6 17:45	2010-08-12	Show	GitHub Exploit DB Packet Storm

255844	6.9	警告	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の IOSurface における整数オーバーフローの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2973	2010-09-6 17:45	2010-08-5	Show	GitHub Exploit DB Packet Storm

255845	9.3	危険	アップル	-	Apple Quicktime に脆弱性	CWE-119 バッファエラー	CVE-2010-1799	2010-09-6 17:44	2010-08-13	Show	GitHub Exploit DB Packet Storm

255846	10	危険	オラクル	-	Oracle WebLogic Server の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0073	2010-09-6 17:41	2010-02-4	Show	GitHub Exploit DB Packet Storm

255847	2.1	注意	サイバートラスト株式会社 libvirt.org レッドハット	-	libvirt における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2242	2010-09-3 16:32	2010-08-4	Show	GitHub Exploit DB Packet Storm

255848	4.4	警告	サイバートラスト株式会社 libvirt.org レッドハット	-	libvirt における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2239	2010-09-3 16:32	2010-08-10	Show	GitHub Exploit DB Packet Storm

255849	3.6	注意	freedesktop.org サイバートラスト株式会社レッドハット	-	dbus-glib の GObject プロパティにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1172	2010-09-3 16:32	2010-08-10	Show	GitHub Exploit DB Packet Storm

255850	6.6	警告	マイクロソフト	-	Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1897	2010-09-3 12:00	2010-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277881	-	inductiveautomation	ignition	Inductive Automation Ignition 7.7.2 stores cleartext OPC Server credentials, which allows local users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-0992	2024-11-21 11:24	2015-04-3	Show	GitHub Exploit DB Packet Storm

277882	-	inductiveautomation	ignition	Inductive Automation Ignition 7.7.2 allows remote attackers to obtain sensitive information by reading an error message about an unhandled exception, as demonstrated by pathname information.	CWE-200 Information Exposure	CVE-2015-0991	2024-11-21 11:24	2015-04-3	Show	GitHub Exploit DB Packet Storm

277883	-	ecava	integraxor	Untrusted search path vulnerability in Ecava IntegraXor SCADA Server before 4.2.4488 allows local users to gain privileges via a renamed DLL in the default install directory.	NVD-CWE-Other	CVE-2015-0990	2024-11-21 11:24	2015-04-3	Show	GitHub Exploit DB Packet Storm

277884	-	inductiveautomation	ignition	Cross-site scripting (XSS) vulnerability in Inductive Automation Ignition 7.7.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2015-0976	2024-11-21 11:24	2015-04-3	Show	GitHub Exploit DB Packet Storm

277885	-	google	chrome	Race condition in gpu/command_buffer/service/gles2_cmd_decoder.cc in Google Chrome before 41.0.2272.118 allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspeci…	CWE-362 Race Condition	CVE-2015-1234	2024-11-21 11:24	2015-04-2	Show	GitHub Exploit DB Packet Storm

277886	-	google	chrome	Google Chrome before 41.0.2272.118 does not properly handle the interaction of IPC, the Gamepad API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vectors.	CWE-17 Code	CVE-2015-1233	2024-11-21 11:24	2015-04-2	Show	GitHub Exploit DB Packet Storm

277887	-	xzeres	442sr_os 442sr	Cross-site request forgery (CSRF) vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to hijack the authentication of admins for requests that modify the default user's pa…	CWE-352 Origin Validation Error	CVE-2015-0985	2024-11-21 11:24	2015-03-31	Show	GitHub Exploit DB Packet Storm

277888	-	honeywell	excel_web_xl_1000c1000_600_i\/o excel_web_xl_1000c50u_52_i\/o_uukl excel_web_xl_1000c500_300_i\/o_uukl excel_web_xl_1000c1000_600_i\/o_uukl excel_web_xl_1000c100_104_i\/o excel_web_xl_…	Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O U…	CWE-22 Path Traversal	CVE-2015-0984	2024-11-21 11:24	2015-03-31	Show	GitHub Exploit DB Packet Storm

277889	-	schneider-electric aveva	wonderware_intouch_2014 aveva_edge	Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 store cleartext OPC User credentials in a configuration file, which allow…	CWE-200 Information Exposure	CVE-2015-0999	2024-11-21 11:24	2015-03-29	Show	GitHub Exploit DB Packet Storm

277890	-	schneider-electric aveva	wonderware_intouch_2014 aveva_edge	Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 transmit cleartext credentials, which allows remote attackers to obtain s…	CWE-200 Information Exposure	CVE-2015-0998	2024-11-21 11:24	2015-03-29	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed