Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255961 1.2 注意 IBM
OpenBSD		 - OpenSSH における X11 転送ポートをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-3259 2010-07-7 16:40 2008-07-22 Show GitHub Exploit DB Packet Storm
255962 4.3 警告 アップル
サイバートラスト株式会社
レッドハット
SquirrelMail Project		 - SquirrelMail におけるユーザインターフェースを偽装される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1581 2010-07-6 19:19 2009-05-12 Show GitHub Exploit DB Packet Storm
255963 6.8 警告 アップル
SquirrelMail Project		 - SquirrelMail におけるセッション固定の脆弱性 CWE-287
不適切な認証 		CVE-2009-1580 2010-07-6 19:18 2009-05-11 Show GitHub Exploit DB Packet Storm
255964 6.8 警告 アップル
サイバートラスト株式会社
レッドハット
SquirrelMail Project		 - SquirrelMail における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-1579 2010-07-6 19:18 2009-05-10 Show GitHub Exploit DB Packet Storm
255965 4.3 警告 アップル
サイバートラスト株式会社
レッドハット
SquirrelMail Project		 - SquirrelMail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1578 2010-07-6 19:18 2009-05-8 Show GitHub Exploit DB Packet Storm
255966 8.5 危険 マイクロソフト - Microsoft IIS における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1256 2010-07-5 17:52 2010-06-8 Show GitHub Exploit DB Packet Storm
255967 4 警告 マイクロソフト - Microsoft Windows SharePoint Services におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1264 2010-07-5 17:52 2010-06-8 Show GitHub Exploit DB Packet Storm
255968 6.9 警告 マイクロソフト - Open XML File Format Converter のインストールにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1254 2010-07-5 17:52 2010-06-8 Show GitHub Exploit DB Packet Storm
255969 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Excel ファイルにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1252 2010-07-5 17:51 2010-06-8 Show GitHub Exploit DB Packet Storm
255970 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Excel ファイルにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1251 2010-07-5 17:51 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258201 5.8 MEDIUM
Network 		cisco ip_phone_8800_series_firmware A vulnerability in Session Initiation Protocol (SIP) call handling in Cisco IP Phone 8800 Series devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition b… CWE-20
 Improper Input Validation  		CVE-2017-12328 2024-11-21 12:09 2017-11-30 Show GitHub Exploit DB Packet Storm
258202 5.0 MEDIUM
Network 		cisco webex_meeting_center A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due… CWE-20
 Improper Input Validation  		CVE-2017-12297 2024-11-21 12:09 2017-11-30 Show GitHub Exploit DB Packet Storm
258203 5.5 MEDIUM
Local 		linux linux_kernel The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL point… - CVE-2017-12193 2024-11-21 12:09 2017-11-23 Show GitHub Exploit DB Packet Storm
258204 6.5 MEDIUM
Local 		linux linux_kernel The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same… - CVE-2017-12190 2024-11-21 12:09 2017-11-23 Show GitHub Exploit DB Packet Storm
258205 7.8 HIGH
Local 		apache
debian 		openoffice
debian_linux 		A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory… CWE-787
 Out-of-bounds Write 		CVE-2017-12608 2024-11-21 12:09 2017-11-21 Show GitHub Exploit DB Packet Storm
258206 7.8 HIGH
Local 		apache
debian 		openoffice
debian_linux 		A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and appl… CWE-787
 Out-of-bounds Write 		CVE-2017-12607 2024-11-21 12:09 2017-11-21 Show GitHub Exploit DB Packet Storm
258207 8.2 HIGH
Local 		cisco umbrella_insights_virtual_appliance A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulne… CWE-798
 Use of Hard-coded Credentials 		CVE-2017-12350 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm
258208 9.8 CRITICAL
Network 		cisco finesse
hosted_collaboration_solution
emergency_responder
unity_connection
socialminer
mediasense
unified_communications_manager
prime_license_manager
unified_communications_m… 		A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthoriz… CWE-287
Improper Authentication 		CVE-2017-12337 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm
258209 6.1 MEDIUM
Network 		cisco registered_envelope_service Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) … CWE-79
Cross-site Scripting 		CVE-2017-12323 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm
258210 6.1 MEDIUM
Network 		cisco email_encryption Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) … CWE-79
Cross-site Scripting 		CVE-2017-12322 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm