Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256341 5 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0856 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
256342 5 警告 オラクル - Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0872 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
256343 2.1 注意 オラクル - Oracle Database の Audit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0854 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
256344 3.6 注意 オラクル - Oracle Database の Change Data Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0870 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
256345 4 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0851 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
256346 4 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0867 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
256347 5.5 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0852 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
256348 6.5 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0866 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
256349 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
256350 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252421 8.8 HIGH
Network 		jenkins distributed_fork It was found that there were no permission checks performed in the Distributed Fork plugin before and including 1.5.0 for Jenkins that provides the dist-fork CLI command beyond the basic check for Ov… CWE-287
Improper Authentication 		CVE-2017-2652 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252422 8.5 HIGH
Network 		jenkins pipeline_classpath_step It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permiss… NVD-CWE-noinfo
CVE-2017-2650 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252423 8.1 HIGH
Network 		jenkins active_directory It was found that the Active Directory Plugin for Jenkins up to and including version 2.2 did not verify certificates of the Active Directory server, thereby enabling Man-in-the-Middle attacks. CWE-295
Improper Certificate Validation  		CVE-2017-2649 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252424 5.6 MEDIUM
Network 		jenkins ssh_slaves It was found that jenkins-ssh-slaves-plugin before version 1.15 did not perform host key verification, thereby enabling Man-in-the-Middle attacks. CWE-295
Improper Certificate Validation  		CVE-2017-2648 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252425 7.5 HIGH
Network 		linux
redhat 		linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_aus 		It was found that the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation before 2.6.22.17 used the IPv4-only inet_sk_rebuild_header() function for both IPv4 and IPv6 DCCP conne… - CVE-2017-2634 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252426 6.5 MEDIUM
Network 		qemu
redhat 		qemu
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus 		An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could occur while refreshing the VNC display surface area in the 'vnc_refresh… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2017-2633 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252427 4.9 MEDIUM
Network 		redhat cloudforms_management_engine
cloudforms 		A logic error in valid_role() in CloudForms role validation before 5.7.1.3 could allow a tenant administrator to create groups with a higher privilege level than the tenant administrator should have.… CWE-863
 Incorrect Authorization 		CVE-2017-2632 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252428 6.5 MEDIUM
Network 		haxx curl curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or f… CWE-295
Improper Certificate Validation  		CVE-2017-2629 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252429 5.5 MEDIUM
Local 		freedesktop
redhat 		libice
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus 		It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for session hijacking using the information available from the proc… - CVE-2017-2626 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm
252430 9.9 CRITICAL
Network 		qemu
redhat
citrix
debian
xen 		qemu
enterprise_linux_desktop
xenserver
enterprise_linux_workstation
openstack
enterprise_linux_server
debian_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
 Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cpu… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2017-2620 2024-11-21 12:23 2018-07-28 Show GitHub Exploit DB Packet Storm