Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256291	6.8	警告	アップル GNU Project サン・マイクロシステムズサイバートラスト株式会社レッドハット	-	GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-4131	2010-01-18 12:21	2007-08-23	Show	GitHub Exploit DB Packet Storm

256292	4.6	警告	IBM	-	IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4150	2010-01-15 14:10	2009-12-2	Show	GitHub Exploit DB Packet Storm

256293	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4080	2010-01-15 14:10	2009-11-24	Show	GitHub Exploit DB Packet Storm

256294	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

256295	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

256296	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

256297	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

256298	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

256299	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

256300	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259011	7.8	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, an output buffer is accessed in one thread and can be potentially freed in another.	NVD-CWE-noinfo	CVE-2017-11041	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259012	5.5	MEDIUM Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, when reading from sysfs nodes, one can read more information than it is allowed to.	CWE-200 Information Exposure	CVE-2017-11040	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259013	5.5	MEDIUM Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing a vendor sub-command, a buffer over-read can occur.	CWE-125 Out-of-bounds Read	CVE-2017-11002	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259014	5.5	MEDIUM Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, the length of the MAC address is not checked which may cause out of bounds read.	CWE-200 Information Exposure	CVE-2017-11001	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259015	7.8	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11000	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259016	7.8	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, concurrent calls into ioctl RMNET_IOCTL_ADD_MUX_CHANNEL in ipa wan driver may lead to memory corruption due to missing …	CWE-119 NVD-CWE-noinfo Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-10999	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259017	7.8	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, in audio_aio_ion_lookup_vaddr, the buffer length, which is user input, ends up being used to validate if the buffer is …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-10998	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259018	7.8	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, using a debugfs node, a write to a PCIe register can cause corruption of kernel memory.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-10997	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259019	5.5	MEDIUM Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, out of bounds access is possible in c_show(), due to compat_hwcap_str[] not being NULL-terminated. This error is not fa…	CWE-200 Information Exposure	CVE-2017-10996	2024-11-21 12:06	2017-09-22	Show	GitHub Exploit DB Packet Storm

259020	8.8	HIGH Network	ruby-lang	ruby	The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log an…	CWE-287 Improper Authentication	CVE-2017-10784	2024-11-21 12:06	2017-09-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed