Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256231 8.5 危険 Samba Project - Samba の smbd におけるファイルパーミッションを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0728 2010-03-18 12:09 2010-03-10 Show GitHub Exploit DB Packet Storm
256232 7.2 危険 IBM - IBM AIX および VIOS の qosmod におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0960 2010-03-18 12:09 2010-03-5 Show GitHub Exploit DB Packet Storm
256233 7.2 危険 IBM - IBM AIX および VIOS の qoslist におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0961 2010-03-18 12:09 2010-03-5 Show GitHub Exploit DB Packet Storm
256234 9 危険 マイクロソフト - Microsoft Virtual PC の VMM におけるゲスト OS 内で任意のカーネルモードコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1542 2010-03-17 12:18 2009-07-14 Show GitHub Exploit DB Packet Storm
256235 6.8 警告 IBM - IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0921 2010-03-16 11:15 2010-03-3 Show GitHub Exploit DB Packet Storm
256236 4.3 警告 IBM - IBM Lotus Domino Web Access におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0920 2010-03-16 11:14 2010-03-3 Show GitHub Exploit DB Packet Storm
256237 10 危険 IBM - IBM Lotus Domino Web Access の UltraLite 機能における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0918 2010-03-16 11:14 2010-03-3 Show GitHub Exploit DB Packet Storm
256238 4.9 警告 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の _get_argv および _get_compat_argv 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-0411 2010-03-16 11:14 2010-02-8 Show GitHub Exploit DB Packet Storm
256239 10 危険 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の stap-server における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4273 2010-03-16 11:14 2010-01-26 Show GitHub Exploit DB Packet Storm
256240 6.5 警告 サイバートラスト株式会社
Linux
レッドハット		 - KVM の x86 エミュレータにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0298 2010-03-16 11:13 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295701 - cisco telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
telepresence_system_3200
telepresence_system_3210
telepresence_system_t3 		An unspecified API on Cisco TelePresence Immersive Endpoint Devices before 1.9.1 allows remote attackers to execute arbitrary commands by leveraging certain adjacency and sending a malformed request … CWE-78
OS Command  		CVE-2012-3074 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
295702 - cisco telepresence_multipoint_switch_software
telepresence_multipoint_switch
telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
tel… 		The IP implementation on Cisco TelePresence Multipoint Switch before 1.8.1, Cisco TelePresence Manager before 1.9.0, and Cisco TelePresence Recording Server 1.8 and earlier allows remote attackers to… NVD-CWE-Other
CVE-2012-3073 2024-11-21 10:40 2012-07-12 Show GitHub Exploit DB Packet Storm
295703 - astaro
sophos 		security_gateway_software
security_gateway
unified_threat_management_software
unified_threat_management 		Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Co… CWE-79
Cross-site Scripting 		CVE-2012-3238 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
295704 - synel sy-780\/a_time_\&_attendance_terminal The Synel SY-780/A Time & Attendance terminal allows remote attackers to cause a denial of service (device hang) via network traffic to port (1) 1641, (2) 3734, or (3) 3735. CWE-399
 Resource Management Errors 		CVE-2012-2970 2024-11-21 10:40 2012-07-10 Show GitHub Exploit DB Packet Storm
295705 - elitecore cyberoam_unified_threat_management The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in… CWE-310
Cryptographic Issues 		CVE-2012-3372 2024-11-21 10:40 2012-07-9 Show GitHub Exploit DB Packet Storm
295706 - pidgin pidgin Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3374 2024-11-21 10:40 2012-07-7 Show GitHub Exploit DB Packet Storm
295707 - invensys wonderware_application_server
dasabcip
dassidirect
daserver_runtime_components
intouch\/wonderware_application_server 		Stack-based buffer overflow in slssvc.exe before 58.x in Invensys Wonderware SuiteLink in the Invensys System Platform software suite, as used in InTouch/Wonderware Application Server IT before 10.5 … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3007 2024-11-21 10:40 2012-07-5 Show GitHub Exploit DB Packet Storm
295708 - redhat dtach Integer signedness error in attach.c in dtach 0.8 allows remote attackers to obtain sensitive information from daemon stack memory in opportunistic circumstances by reading application data after an … CWE-189
Numeric Errors 		CVE-2012-3368 2024-11-21 10:40 2012-07-4 Show GitHub Exploit DB Packet Storm
295709 - anl bcfg2 The Trigger plugin in bcfg2 1.2.x before 1.2.3 allows remote attackers with root access to the client to execute arbitrary commands via shell metacharacters in the UUID field to the server process (b… CWE-78
OS Command  		CVE-2012-3366 2024-11-21 10:40 2012-07-4 Show GitHub Exploit DB Packet Storm
295710 - webatall web\@all Cross-site scripting (XSS) vulnerability in search.php in web@all 2.0, as downloaded before May 30, 2012, allows remote attackers to inject arbitrary web script or HTML via the _text[title] parameter. CWE-79
Cross-site Scripting 		CVE-2012-3232 2024-11-21 10:40 2012-06-30 Show GitHub Exploit DB Packet Storm