Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256051	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスレッドハット	-	Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0005	2010-04-28 15:18	2008-01-11	Show	GitHub Exploit DB Packet Storm

256052	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2009-4463	2010-04-27 16:10	2010-04-7	Show	GitHub Exploit DB Packet Storm

256053	9.3	危険	Foxit Software Inc	-	Foxit Reader に任意のコード実行が可能な脆弱性	CWE-94 コード・インジェクション	CVE-2010-1239	2010-04-27 16:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

256054	10	危険	ヒューレット・パッカード	-	Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-0104	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256055	6.8	警告	アップル	-	AirPort Utility におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2822	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256056	9.3	危険	アップル	-	Apple Safari の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0040	2010-04-27 15:20	2010-03-15	Show	GitHub Exploit DB Packet Storm

256057	4	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0308	2010-04-27 15:20	2010-01-28	Show	GitHub Exploit DB Packet Storm

256058	6.8	警告	アップル	-	Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2837	2010-04-27 15:20	2009-11-9	Show	GitHub Exploit DB Packet Storm

256059	5	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の strListGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-2855	2010-04-27 15:19	2009-08-18	Show	GitHub Exploit DB Packet Storm

256060	4.3	警告	アップルサイバートラスト株式会社 LibTIFF サン・マイクロシステムズレッドハット	-	libtiff の LZWDecodeCompat 関数におけるバッファアンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2285	2010-04-27 15:19	2009-07-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278761	-	fedoraproject opensuse xiph	fedora opensuse vorbis-tools	oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.	NVD-CWE-Other	CVE-2014-9638	2024-11-21 11:21	2015-01-24	Show	GitHub Exploit DB Packet Storm

278762	-	redhat openstack	openstack image_registry_and_delivery_service_\(glance\)	OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting an image i…	CWE-399 Resource Management Errors	CVE-2014-9623	2024-11-21 11:21	2015-01-24	Show	GitHub Exploit DB Packet Storm

278763	-	gentoo	xdg-utils	Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open.	CWE-77 Command Injection	CVE-2014-9622	2024-11-21 11:21	2015-01-22	Show	GitHub Exploit DB Packet Storm

278764	-	file_project	file	The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.	CWE-399 Resource Management Errors	CVE-2014-9621	2024-11-21 11:21	2015-01-22	Show	GitHub Exploit DB Packet Storm

278765	-	file_project	file	The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes.	CWE-399 Resource Management Errors	CVE-2014-9620	2024-11-21 11:21	2015-01-22	Show	GitHub Exploit DB Packet Storm

278766	-	videolan	vlc_media_player	The picture_Release function in misc/picture.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (write access violation) via a crafted…	CWE-20 Improper Input Validation	CVE-2014-9598	2024-11-21 11:21	2015-01-22	Show	GitHub Exploit DB Packet Storm

278767	-	videolan	vlc_media_player	The picture_pool_Delete function in misc/picture_pool.c in VideoLAN VLC media player 2.1.5 allows remote attackers to execute arbitrary code or cause a denial of service (DEP violation and applicatio…	CWE-20 Improper Input Validation	CVE-2014-9597	2024-11-21 11:21	2015-01-22	Show	GitHub Exploit DB Packet Storm

278768	-	pivotal_software	rabbitmq	RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9494	2024-11-21 11:21	2015-01-21	Show	GitHub Exploit DB Packet Storm

278769	-	illumos	illumos	The devzvol_readdir function in illumos does not check the return value of a strchr call, which allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecifi…	NVD-CWE-Other	CVE-2014-9491	2024-11-21 11:21	2015-01-21	Show	GitHub Exploit DB Packet Storm

278770	-	getsentry	raven-ruby	The numtok function in lib/raven/okjson.rb in the raven-ruby gem before 0.12.2 for Ruby allows remote attackers to cause a denial of service via a large exponent value in a scientific number.	CWE-399 Resource Management Errors	CVE-2014-9490	2024-11-21 11:21	2015-01-21	Show	GitHub Exploit DB Packet Storm