Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256541	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256542	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256543	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256544	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256545	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

256546	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

256547	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247731	7.5	HIGH Network	aeroadmin	aeroadmin	AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8893	2024-11-21 12:34	2017-07-3	Show	GitHub Exploit DB Packet Storm

247732	7.5	HIGH Network	linux	linux_kernel	The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a UDP packet from a remote attacker.…	CWE-129 Improper Validation of Array Index	CVE-2017-8797	2024-11-21 12:34	2017-07-3	Show	GitHub Exploit DB Packet Storm

247733	6.5	MEDIUM Network	elastic	kibana	In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters crede…	CWE-200 Information Exposure	CVE-2017-8443	2024-11-21 12:34	2017-07-1	Show	GitHub Exploit DB Packet Storm

247734	8.1	HIGH Network	microsoft	azure_active_directory_connect	Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "A…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-8613	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247735	7.0	HIGH Local	microsoft	windows_server_2016 windows_10	The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application…	CWE-281 Improper Preservation of Permissions	CVE-2017-8579	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247736	7.0	HIGH Local	microsoft	windows_server_2016 windows_10	The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted applicatio…	CWE-665 Improper Initialization	CVE-2017-8576	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247737	5.5	MEDIUM Local	microsoft	windows_server_2016 windows_10	The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics …	CWE-200 Information Exposure	CVE-2017-8575	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247738	7.8	HIGH Local	microsoft	windows_defender forefront_endpoint_protection security_essentials endpoint_protection windows_intune_endpoint_protection	The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows S…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8558	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247739	4.7	MEDIUM Local	microsoft	windows_rt_8.1 windows_server_2012 windows_server_2016 windows_7 windows_10 windows_8.1 windows_server_2008	The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 a…	CWE-200 Information Exposure	CVE-2017-8554	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

247740	7.5	HIGH Network	elastic	kibana	Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.	CWE-769 DEPRECATED: Uncontrolled File Descriptor Consumption	CVE-2017-8452	2024-11-21 12:34	2017-06-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed