Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256441	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0490	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

256442	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0807	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

256443	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-362 競合状態	CVE-2010-0489	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

256444	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0267	2010-04-19 19:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

256445	10	危険	アップル	-	Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性	CWE-DesignError	CVE-2010-0055	2010-04-16 16:59	2010-03-29	Show	GitHub Exploit DB Packet Storm

256446	0	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるコンテンツを公開される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0534	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

256447	5	警告	アップル	-	Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0523	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

256448	9	危険	アップル	-	Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0522	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

256449	5	警告	アップル	-	Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-0521	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

256450	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4214	2010-04-16 16:58	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283961	-		apache	cordova	Apache Cordova Android before 3.5.1 allows remote attackers to bypass the HTTP whitelist and connect to arbitrary servers by using JavaScript to open WebSocket connections through WebView.	CWE-254 7PK - Security Features	CVE-2014-3501	2024-11-21 11:08	2014-11-16	Show	GitHub Exploit DB Packet Storm

283962	-		apache	cordova	Apache Cordova Android before 3.5.1 allows remote attackers to change the start page via a crafted intent URL.	CWE-17 Code	CVE-2014-3500	2024-11-21 11:08	2014-11-16	Show	GitHub Exploit DB Packet Storm

283963	-		canonical apple opensuse oracle debian haxx	ubuntu_linux mac_os_x opensuse hyperion debian_linux libcurl	The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out…	CWE-200 Information Exposure	CVE-2014-3707	2024-11-21 11:08	2014-11-16	Show	GitHub Exploit DB Packet Storm

283964	-		qemu debian canonical	qemu debian_linux ubuntu_linux	The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling.	CWE-269 Improper Privilege Management	CVE-2014-3689	2024-11-21 11:08	2014-11-15	Show	GitHub Exploit DB Packet Storm

283965	-		redhat	openshift	Red Hat OpenShift Enterprise before 2.2 does not properly restrict access to gears, which allows remote attackers to access the network resources of arbitrary gears via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3674	2024-11-21 11:08	2014-11-14	Show	GitHub Exploit DB Packet Storm

283966	-		redhat	openshift	Red Hat OpenShift Enterprise before 2.2 allows local users to obtain IP address and port number information for remote systems by reading /proc/net/tcp.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3602	2024-11-21 11:08	2014-11-14	Show	GitHub Exploit DB Packet Storm

283967	7.5	HIGH Network	linux redhat canonical debian opensuse suse oracle	linux_kernel enterprise_linux enterprise_mrg ubuntu_linux debian_linux evergreen linux_enterprise_workstation_extension suse_linux_enterprise_server linux_enterprise_software_…	The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and ne…	CWE-20 Improper Input Validation	CVE-2014-3673	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

283968	5.5	MEDIUM Local	linux opensuse suse novell redhat debian canonical	linux_kernel evergreen linux_enterprise_real_time_extension suse_linux_enterprise_server suse_linux_enterprise_desktop linux_enterprise_workstation_extension linux_enterprise_softwa…	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allow…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3690	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

283969	7.5	HIGH Network	linux redhat canonical opensuse novell suse debian oracle	linux_kernel enterprise_mrg ubuntu_linux evergreen suse_linux_enterprise_server linux_enterprise_real_time_extension debian_linux suse_linux_enterprise_desktop linux_enterpris…	The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplic…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3687	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

283970	5.5	MEDIUM Local	linux redhat canonical debian opensuse suse oracle	linux_kernel enterprise_linux ubuntu_linux debian_linux evergreen suse_linux_enterprise_server linux	arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a c…	NVD-CWE-noinfo	CVE-2014-3647	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm