Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256431	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1137	2010-04-21 17:51	2010-03-29	Show	GitHub Exploit DB Packet Storm

256432	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4029	2010-04-21 17:51	2009-12-20	Show	GitHub Exploit DB Packet Storm

256433	5	警告	Linux レッドハット	-	Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0741	2010-04-21 17:48	2010-03-30	Show	GitHub Exploit DB Packet Storm

256434	6.9	警告	mielke レッドハット	-	brltty の libbrlttybba.so における権限昇格の脆弱性	CWE-264 CWE-Other	CVE-2008-3279	2010-04-21 17:47	2010-03-30	Show	GitHub Exploit DB Packet Storm

256435	4.3	警告	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0181	2010-04-20 16:42	2010-03-30	Show	GitHub Exploit DB Packet Storm

256436	5.8	警告	サイボウズ	-	複数のサイボウズ製品におけるアクセス制限に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2029	2010-04-20 12:01	2010-04-20	Show	GitHub Exploit DB Packet Storm

256437	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0805	2010-04-19 19:20	2010-03-30	Show	GitHub Exploit DB Packet Storm

256438	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0491	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

256439	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2010-0494	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

256440	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の mstime.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0492	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250701	5.5	MEDIUM Local	linux	linux_kernel	Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel before 4.9.11 allows local users to cause a denial of service (assertion failure and panic) via a multithr…	CWE-362 CWE-617 Race Condition Reachable Assertion	CVE-2017-5986	2024-11-21 12:28	2017-02-19	Show	GitHub Exploit DB Packet Storm

250702	7.5	HIGH Network	wireshark debian	wireshark debian_linux	In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to r…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-6014	2024-11-21 12:28	2017-02-17	Show	GitHub Exploit DB Packet Storm

250703	5.4	MEDIUM Network	intersect_alliance	snare_epilog	Cross-site scripting (XSS) vulnerability in InterSect Alliance SNARE Epilog for UNIX version 1.5 allows remote authenticated users to inject arbitrary web script or HTML via the str_log_name paramete…	CWE-79 Cross-site Scripting	CVE-2017-5998	2024-11-21 12:28	2017-02-17	Show	GitHub Exploit DB Packet Storm

250704	5.5	MEDIUM Local	icoutils_project debian redhat	icoutils debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_serve…	An issue was discovered in icoutils 0.31.1. An out-of-bounds read leading to a buffer overflow was observed in the "simple_vec" function in the "extract.c" source file. This affects icotool.	CWE-125 Out-of-bounds Read	CVE-2017-6011	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250705	5.5	MEDIUM Local	icoutils_project debian redhat	icoutils debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_serve…	An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "extract_icons" function in the "extract.c" source file. This issue can be triggered by processing a corrupted ico fi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6010	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250706	5.5	MEDIUM Local	icoutils_project debian redhat	icoutils debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_serve…	An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6009	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250707	7.5	HIGH Network	pcre	pcre	The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (ou…	CWE-125 Out-of-bounds Read	CVE-2017-6004	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250708	7.5	HIGH Network	sap	sap_kernel	The SAP Message Server HTTP daemon in SAP KERNEL 7.21-7.49 allows remote attackers to cause a denial of service (memory consumption and process crash) via multiple msgserver/group?group= requests wit…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-5997	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250709	8.2	HIGH Local	python	openpyxl	Openpyxl 2.4.1 resolves external entities by default, which allows remote attackers to conduct XXE attacks via a crafted .xlsx document.	CWE-611 XXE	CVE-2017-5992	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm

250710	5.5	MEDIUM Local	artifex	mupdf	Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted image.	CWE-125 Out-of-bounds Read	CVE-2017-5896	2024-11-21 12:28	2017-02-16	Show	GitHub Exploit DB Packet Storm