Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256411	10	危険	ヒューレット・パッカード	-	Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-0104	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256412	6.8	警告	アップル	-	AirPort Utility におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2822	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

256413	9.3	危険	アップル	-	Apple Safari の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0040	2010-04-27 15:20	2010-03-15	Show	GitHub Exploit DB Packet Storm

256414	4	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0308	2010-04-27 15:20	2010-01-28	Show	GitHub Exploit DB Packet Storm

256415	6.8	警告	アップル	-	Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2837	2010-04-27 15:20	2009-11-9	Show	GitHub Exploit DB Packet Storm

256416	5	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の strListGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-2855	2010-04-27 15:19	2009-08-18	Show	GitHub Exploit DB Packet Storm

256417	4.3	警告	アップルサイバートラスト株式会社 LibTIFF サン・マイクロシステムズレッドハット	-	libtiff の LZWDecodeCompat 関数におけるバッファアンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2285	2010-04-27 15:19	2009-07-1	Show	GitHub Exploit DB Packet Storm

256418	4.3	警告	サイバートラスト株式会社レッドハット	-	Red Hat および MIRACLE LINUX の sendmail におけるメール送信元を偽装される脆弱性	-	CVE-2006-7176	2010-04-27 15:18	2007-03-27	Show	GitHub Exploit DB Packet Storm

256419	6.9	警告	アップル	-	Windows 上で稼働する Apple iTunes のインストールパッケージにおける権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-0532	2010-04-26 16:59	2010-03-31	Show	GitHub Exploit DB Packet Storm

256420	4.3	警告	アップル	-	Apple iTunes におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0531	2010-04-26 16:59	2010-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249001	6.1	MEDIUM Network	icewarp	server	In the webmail component in IceWarp Server 11.3.1.5, there was an XSS vulnerability discovered in the "language" parameter.	CWE-79 Cross-site Scripting	CVE-2017-7855	2024-11-21 12:32	2017-09-1	Show	GitHub Exploit DB Packet Storm

249002	6.5	MEDIUM Network	riverbed	opnet_app_response_xpert	Directory traversal vulnerability in viewer_script.jsp in Riverbed OPNET App Response Xpert (ARX) version 9.6.1 allows remote authenticated users to inject arbitrary commands to read OS files.	CWE-22 Path Traversal	CVE-2017-7693	2024-11-21 12:32	2017-08-26	Show	GitHub Exploit DB Packet Storm

249003	5.9	MEDIUM Network	osisoft	pi_data_archive	An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Network Manager using older protocol versions contains a flaw that could allow a m…	CWE-287 Improper Authentication	CVE-2017-7934	2024-11-21 12:32	2017-08-26	Show	GitHub Exploit DB Packet Storm

249004	7.4	HIGH Network	osisoft	pi_data_archive	An Improper Authentication issue was discovered in OSIsoft PI Server 2017 PI Data Archive versions prior to 2017. PI Data Archive has protocol flaws with the potential to expose change records in the…	CWE-287 Improper Authentication	CVE-2017-7930	2024-11-21 12:32	2017-08-26	Show	GitHub Exploit DB Packet Storm

249005	8.8	HIGH Network	osisoft	pi_web_api	A Cross-Site Request Forgery issue was discovered in OSIsoft PI Web API versions prior to 2017 (1.9.0). The vulnerability allows cross-site request forgery (CSRF) attacks to occur when an otherwise-u…	CWE-352 Origin Validation Error	CVE-2017-7926	2024-11-21 12:32	2017-08-26	Show	GitHub Exploit DB Packet Storm

249006	8.8	HIGH Network	powerdns	dnsdist	dnsdist version 1.1.0 is vulnerable to a flaw in authentication mechanism for REST API potentially allowing CSRF attack.	CWE-352 Origin Validation Error	CVE-2017-7557	2024-11-21 12:32	2017-08-22	Show	GitHub Exploit DB Packet Storm

249007	8.8	HIGH Network	hawt	hawtio	Hawtio versions up to and including 1.5.3 are vulnerable to CSRF vulnerability allowing remote attackers to trick the user to visit their website containing a malicious script which can be submitted …	CWE-352 Origin Validation Error	CVE-2017-7556	2024-11-21 12:32	2017-08-18	Show	GitHub Exploit DB Packet Storm

249008	9.8	CRITICAL Network	augeas	augeas	Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the applicatio…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7555	2024-11-21 12:32	2017-08-18	Show	GitHub Exploit DB Packet Storm

249009	9.8	CRITICAL Network	fedoraproject	389_directory_server	389-ds-base version before 1.3.5.19 and 1.3.6.7 are vulnerable to password brute-force attacks during account lockout due to different return codes returned on password attempts.	-	CVE-2017-7551	2024-11-21 12:32	2017-08-17	Show	GitHub Exploit DB Packet Storm

249010	7.5	HIGH Network	postgresql debian	postgresql debian_linux	PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents o…	NVD-CWE-noinfo	CVE-2017-7548	2024-11-21 12:32	2017-08-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed