Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256061	9.3	危険	マイクロソフト	-	Microsoft Windows の Microsoft Paint における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0028	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

256062	7.2	危険	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-Other その他	CVE-2010-0233	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

256063	6.3	警告	マイクロソフト	-	Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0035	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

256064	7.1	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-0021	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

256065	10	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性	CWE-264 CWE-310	CVE-2010-0231	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

256066	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0022	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

256067	9	危険	マイクロソフト	-	Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性	CWE-20 CWE-94	CVE-2010-0020	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

256068	6.9	警告	マイクロソフト	-	Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0023	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

256069	4	警告	マイクロソフト	-	Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0026	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

256070	9.3	危険	日本電気アップル富士通古河電気工業ヒューレット・パッカードインターネットイニシアティブアラクサラネットワークス日立	-	IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性	CWE-20 不適切な入力確認	CVE-2008-2476	2010-03-3 11:43	2008-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267031	5.3	MEDIUM Network	haproxy	haproxy	HAProxy statistics in openstack-tripleo-image-elements are non-authenticated over the network.	CWE-287 Improper Authentication	CVE-2016-2102	2024-11-21 11:47	2017-08-23	Show	GitHub Exploit DB Packet Storm

267032	7.5	HIGH Network	apache	http_server	In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to mod_auth_digest can cause the server to crash, and each instance continues to crash even for subsequently valid requests.	CWE-20 Improper Input Validation	CVE-2016-2161	2024-11-21 11:47	2017-07-28	Show	GitHub Exploit DB Packet Storm

267033	9.8	CRITICAL Network	arubanetworks	clearpass	SQL injection vulnerability in ClearPass Policy Manager 6.5.x through 6.5.6 and 6.6.0.	CWE-89 SQL Injection	CVE-2016-2034	2024-11-21 11:47	2017-06-9	Show	GitHub Exploit DB Packet Storm

267034	6.5	MEDIUM Network	pivotal_software cloudfoundry	cloud_foundry_elastic_runtime cf-release	The Loggregator Traffic Controller endpoints in cf-release v231 and lower, Pivotal Elastic Runtime versions prior to 1.5.19 AND 1.6.x versions prior to 1.6.20 are not cleansing request URL paths when…	CWE-20 Improper Input Validation	CVE-2016-2165	2024-11-21 11:47	2017-05-26	Show	GitHub Exploit DB Packet Storm

267035	7.8	HIGH Local	lenovo	solution_center	The backend service process in Lenovo Solution Center (aka LSC) before 3.3.0002 allows local users to gain SYSTEM privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1876	2024-11-21 11:47	2017-05-23	Show	GitHub Exploit DB Packet Storm

267036	6.5	MEDIUM Network	samba	samba	Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC (Privilege Attribute Certificate) checksum. A remote, authenticated, attacker can cause the w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2126	2024-11-21 11:47	2017-05-11	Show	GitHub Exploit DB Packet Storm

267037	9.8	CRITICAL Network	fedoraproject vmware	fedora spring_advanced_message_queuing_protocol	org.springframework.core.serializer.DefaultDeserializer in Spring AMQP before 1.5.5 allows remote attackers to execute arbitrary code.	CWE-20 Improper Input Validation	CVE-2016-2173	2024-11-21 11:47	2017-04-22	Show	GitHub Exploit DB Packet Storm

267038	5.5	MEDIUM Local	samsung	galaxy_s6_firmware galaxy_note_3_firmware	The getURL function in drivers/secfilter/urlparser.c in secfilter in the Samsung kernel for Android on SM-N9005 build N9005XXUGBOB6 (Note 3) and SM-G920F build G920FXXU2COH2 (Galaxy S6) devices allow…	CWE-476 NULL Pointer Dereference	CVE-2016-2036	2024-11-21 11:47	2017-04-14	Show	GitHub Exploit DB Packet Storm

267039	6.1	MEDIUM Network	redhat	satellite	Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Satellite 5 allow remote attackers to inject arbitrary web script or HTML via (1) the label parameter to admin/BunchDetail.do; (2) the p…	CWE-79 Cross-site Scripting	CVE-2016-2104	2024-11-21 11:47	2017-04-13	Show	GitHub Exploit DB Packet Storm

267040	6.1	MEDIUM Network	blackberry	blackberry_enterprise_service	Multiple cross-site scripting (XSS) vulnerabilities in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to inject arbitrary web script or HTML via the locale pa…	CWE-79 Cross-site Scripting	CVE-2016-1915	2024-11-21 11:47	2017-04-13	Show	GitHub Exploit DB Packet Storm