Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256231	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスレッドハット	-	Apache の mod_proxy_ftp における UTF-7 エンコードに関するクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0005	2010-04-28 15:18	2008-01-11	Show	GitHub Exploit DB Packet Storm

256232	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter デバイスにおけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2009-4463	2010-04-27 16:10	2010-04-7	Show	GitHub Exploit DB Packet Storm

256233	9.3	危険	Foxit Software Inc	-	Foxit Reader に任意のコード実行が可能な脆弱性	CWE-94 コード・インジェクション	CVE-2010-1239	2010-04-27 16:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

256234	10	危険	ヒューレット・パッカード	-	Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-0104	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256235	6.8	警告	アップル	-	AirPort Utility におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2822	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256236	9.3	危険	アップル	-	Apple Safari の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0040	2010-04-27 15:20	2010-03-15	Show	GitHub Exploit DB Packet Storm

256237	4	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0308	2010-04-27 15:20	2010-01-28	Show	GitHub Exploit DB Packet Storm

256238	6.8	警告	アップル	-	Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2837	2010-04-27 15:20	2009-11-9	Show	GitHub Exploit DB Packet Storm

256239	5	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の strListGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-2855	2010-04-27 15:19	2009-08-18	Show	GitHub Exploit DB Packet Storm

256240	4.3	警告	アップルサイバートラスト株式会社 LibTIFF サン・マイクロシステムズレッドハット	-	libtiff の LZWDecodeCompat 関数におけるバッファアンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2285	2010-04-27 15:19	2009-07-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264951	8.1	HIGH Network	juniper	junos_space	Insufficient validation of SSH keys in Junos Space before 15.2R2 allows man-in-the-middle (MITM) type of attacks while a Space device is communicating with managed devices.	CWE-20 Improper Input Validation	CVE-2016-4927	2024-11-21 11:53	2017-03-21	Show	GitHub Exploit DB Packet Storm

264952	9.8	CRITICAL Network	juniper	junos_space	Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Space web interface to perform certain administrative tasks without authe…	CWE-287 Improper Authentication	CVE-2016-4926	2024-11-21 11:53	2017-03-21	Show	GitHub Exploit DB Packet Storm

264953	9.8	CRITICAL Network	imagemagick	imagemagick	The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors.	CWE-284 Improper Access Control	CVE-2016-5239	2024-11-21 11:53	2017-03-16	Show	GitHub Exploit DB Packet Storm

264954	7.5	HIGH Network	cloudera	manager	Cloudera Manager 5.5 and earlier allows remote attackers to enumerate user sessions via a request to /api/v11/users/sessions.	CWE-200 Information Exposure	CVE-2016-4950	2024-11-21 11:53	2017-03-8	Show	GitHub Exploit DB Packet Storm

264955	7.5	HIGH Network	cloudera	manager	Cloudera Manager 5.5 and earlier allows remote attackers to obtain sensitive information via a (1) stderr.log or (2) stdout.log value in the filename parameter to /cmf/process/<process_id>/logs.	CWE-200 Information Exposure	CVE-2016-4949	2024-11-21 11:53	2017-03-8	Show	GitHub Exploit DB Packet Storm

264956	6.1	MEDIUM Network	cloudera	manager	Multiple cross-site scripting (XSS) vulnerabilities in Cloudera Manager 5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Template Name field when renaming a t…	CWE-79 Cross-site Scripting	CVE-2016-4948	2024-11-21 11:53	2017-03-8	Show	GitHub Exploit DB Packet Storm

264957	5.3	MEDIUM Network	cloudera	hue	Cloudera HUE 3.9.0 and earlier allows remote attackers to enumerate user accounts via a request to desktop/api/users/autocomplete.	CWE-200 Information Exposure	CVE-2016-4947	2024-11-21 11:53	2017-03-8	Show	GitHub Exploit DB Packet Storm

264958	6.1	MEDIUM Network	cloudera	hue	Multiple cross-site scripting (XSS) vulnerabilities in Cloudera HUE 3.9.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) First name or (2) Last name field in th…	CWE-79 Cross-site Scripting	CVE-2016-4946	2024-11-21 11:53	2017-03-8	Show	GitHub Exploit DB Packet Storm

264959	5.5	MEDIUM Local	graphicsmagick	graphicsmagick	The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a…	CWE-20 Improper Input Validation	CVE-2016-5240	2024-11-21 11:53	2017-02-28	Show	GitHub Exploit DB Packet Storm

264960	5.5	MEDIUM Local	libdwarf_project	libdwarf	dwarf_form.c in libdwarf 20160115 allows remote attackers to cause a denial of service (crash) via a crafted elf file.	CWE-476 NULL Pointer Dereference	CVE-2016-5027	2024-11-21 11:53	2017-02-25	Show	GitHub Exploit DB Packet Storm