Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255981	7.2	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の fasync_helper 関数における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2009-4141	2010-03-29 15:18	2010-01-19	Show	GitHub Exploit DB Packet Storm

255982	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0045	2010-03-25 11:49	2010-03-15	Show	GitHub Exploit DB Packet Storm

255983	4.3	警告	アップル	-	Apple Safari の PubSub における Cookie が設定される脆弱性	CWE-16 環境設定	CVE-2010-0044	2010-03-25 11:49	2010-03-15	Show	GitHub Exploit DB Packet Storm

255984	7.5	危険	サン・マイクロシステムズ GNU Project サイバートラスト株式会社レッドハット	-	GNU tar の safer_name_suffix 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4476	2010-03-25 11:47	2007-08-17	Show	GitHub Exploit DB Packet Storm

255985	7.8	危険	VMware	-	VMware Fusion の vmx86 のカーネル拡張における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3282	2010-03-24 12:23	2009-10-1	Show	GitHub Exploit DB Packet Storm

255986	7.2	危険	VMware	-	VMware Fusion の vmx86 のカーネル拡張における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3281	2010-03-24 12:22	2009-10-1	Show	GitHub Exploit DB Packet Storm

255987	9.3	危険	VMware	-	複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2628	2010-03-24 12:22	2009-09-4	Show	GitHub Exploit DB Packet Storm

255988	9.3	危険	VMware	-	複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0199	2010-03-24 12:22	2009-09-4	Show	GitHub Exploit DB Packet Storm

255989	5	警告	VMware	-	VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2968	2010-03-24 12:22	2009-08-31	Show	GitHub Exploit DB Packet Storm

255990	4	警告	VMware	-	複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1805	2010-03-24 12:22	2009-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248621	8.1	HIGH Network	opensuse	libzypp	In libzypp before 20170803 it was possible to add unsigned YUM repositories without warning to the user that could lead to man in the middle or malicious servers to inject malicious RPM packages into…	CWE-20 Improper Input Validation	CVE-2017-7435	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

248622	9.1	CRITICAL Network	netiq	identity_manager	The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.	CWE-611 XXE	CVE-2017-7426	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

248623	9.8	CRITICAL Network	xmlsoft google debian	libxml2 android debian_linux	Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7376	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

248624	9.8	CRITICAL Network	xmlsoft debian google	libxml2 debian_linux android	A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD …	CWE-611 XXE	CVE-2017-7375	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

248625	8.8	HIGH Network	vanderbilt	redcap	A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.	CWE-89 SQL Injection	CVE-2017-7351	2024-11-21 12:31	2018-02-9	Show	GitHub Exploit DB Packet Storm

248626	7.8	HIGH Local	yandex	yandex_browser	Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll.	CWE-426 Untrusted Search Path	CVE-2017-7327	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

248627	7.5	HIGH Network	yandex	yandex_browser	Race condition issue in Yandex Browser for Android before 17.4.0.16 allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page	CWE-362 Race Condition	CVE-2017-7326	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

248628	7.5	HIGH Network	yandex	yandex_browser	Yandex Browser before 16.9.0 allows remote attackers to spoof the address bar via window.open.	CWE-20 Improper Input Validation	CVE-2017-7325	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

248629	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7163	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

248630	7.8	HIGH Local	apple	iphone_os mac_os_x watchos tvos	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7162	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm