Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255891	7.9	危険	日本電気サイバートラスト株式会社 MIT Kerberos ヒューレット・パッカードターボリナックスレッドハット	-	MIT Kerberos 5 RPC ライブラリの gssrpc_svcauth_unix() 関数における任意のコードを実行される脆弱性	-	CVE-2007-2443	2010-07-15 17:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

255892	9.3	危険	日本電気サイバートラスト株式会社 MIT Kerberos サン・マイクロシステムズターボリナックスヒューレット・パッカードレッドハット	-	MIT Kerberos 5 RPC ライブラリの gssrpc__svcauth_gssapi() 関数における不正なメモリ領域が解放される脆弱性	-	CVE-2007-2442	2010-07-15 17:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

255893	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2277	2010-07-14 17:27	2010-03-29	Show	GitHub Exploit DB Packet Storm

255894	6.9	警告	VMware	-	複数の VMware 製品の USB サービスにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1140	2010-07-14 17:27	2010-04-9	Show	GitHub Exploit DB Packet Storm

255895	9.3	危険	シマンテック	-	Symantec Workspace Streaming (旧 Symantec AppStream) に脆弱性	CWE-287 不適切な認証	CVE-2008-4389	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

255896	5.8	警告	アップル	-	Apple iOS の設定アプリケーションにおけるユーザを追跡可能な脆弱性	CWE-DesignError	CVE-2010-1756	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

255897	4.3	警告	アップル	-	Apple iOS の Safari におけるリモートの Web サーバがユーザを追跡可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1755	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

255898	1.9	注意	アップル	-	Apple iOS のパスコードロックにおける任意のデータにアクセスされる脆弱性	CWE-362 競合状態	CVE-2010-1775	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

255899	6.9	警告	アップル	-	Apple iOS のパスコードロックにおけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1754	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

255900	6.8	警告	アップル	-	Apple iOS の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1753	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258201	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12863	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

258202	8.8	HIGH Network	opencv debian	opencv debian_linux	In modules/imgcodecs/src/grfmt_pxm.cpp, the length of buffer AutoBuffer _src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code …	CWE-787 Out-of-bounds Write	CVE-2017-12862	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

258203	7.5	HIGH Network	numpy	numpy	The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-12852	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

258204	6.5	MEDIUM Local	xen	xen	Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is fre…	CWE-200 Information Exposure	CVE-2017-12855	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

258205	8.8	HIGH Network	rtsindia	rwr-3g-100_firmware	The RealTime RWR-3G-100 Router Firmware Version : Ver1.0.56 is affected by CSRF an attack that forces an end user to execute unwanted actions on a web application in which they're currently authentic…	CWE-352 Origin Validation Error	CVE-2017-12853	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258206	8.8	HIGH Network	kanboard	kanboard	An authenticated standard user could reset the password of the admin by altering form data. Affects kanboard before 1.0.46.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-12851	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258207	8.8	HIGH Network	kanboard	kanboard	An authenticated standard user could reset the password of other users (including the admin) by altering form data. Affects kanboard before 1.0.46.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-12850	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258208	7.8	HIGH Local	gnu	binutils	The elf_read_notesfunction in bfd/elf.c in GNU Binutils 2.29 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12799	2024-11-21 12:10	2017-08-11	Show	GitHub Exploit DB Packet Storm

258209	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the q parameter to searchsuggest.php.	CWE-79 Cross-site Scripting	CVE-2017-12798	2024-11-21 12:10	2017-08-11	Show	GitHub Exploit DB Packet Storm

258210	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via some parameter to usersearch.php.	CWE-79 Cross-site Scripting	CVE-2017-12777	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm