Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256601 6.9 警告 アップル - Windows 上で稼働する Apple iTunes のインストールパッケージにおける権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-0532 2010-04-26 16:59 2010-03-31 Show GitHub Exploit DB Packet Storm
256602 4.3 警告 アップル - Apple iTunes におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0531 2010-04-26 16:59 2010-03-31 Show GitHub Exploit DB Packet Storm
256603 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0536 2010-04-26 16:59 2010-03-31 Show GitHub Exploit DB Packet Storm
256604 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime の QuickTime.qts における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0529 2010-04-26 16:59 2010-03-31 Show GitHub Exploit DB Packet Storm
256605 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0528 2010-04-26 16:58 2010-03-31 Show GitHub Exploit DB Packet Storm
256606 9.3 危険 アップル - Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0527 2010-04-26 16:58 2010-03-31 Show GitHub Exploit DB Packet Storm
256607 5 警告 アップル
サイバートラスト株式会社
Ruby-lang.org
レッドハット		 - Ruby の BigDecimal ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-1904 2010-04-26 16:46 2009-06-9 Show GitHub Exploit DB Packet Storm
256608 6.9 警告 アップル
Vim		 - Vim の Python インターフェースの src/if_python.c における信頼性のない検索パスの脆弱性 CWE-Other
その他 		CVE-2009-0316 2010-04-26 16:45 2009-01-28 Show GitHub Exploit DB Packet Storm
256609 9.3 危険 アップル
サイバートラスト株式会社
Vim
レッドハット		 - Vim におけるエスケープ文字を適切に処理しないことに関する任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4101 2010-04-26 16:45 2008-10-9 Show GitHub Exploit DB Packet Storm
256610 9.3 危険 アップル
サイバートラスト株式会社
Vim
レッドハット		 - Vim における適切に入力をサニタイズしないことに関する任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2712 2010-04-26 16:45 2008-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247061 6.7 MEDIUM
Local 		cisco web_security_appliance A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate wi… CWE-269
 Improper Privilege Management 		CVE-2018-0428 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247062 8.8 HIGH
Network 		cisco application_policy_infrastructure_controller_enterprise_module A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability … CWE-78
OS Command  		CVE-2018-0427 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247063 7.5 HIGH
Network 		cisco email_security_appliance A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass the filtering functionality of an affecte… CWE-20
 Improper Input Validation  		CVE-2018-0419 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247064 8.6 HIGH
Network 		cisco ios_xr A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software could allow an unauthenticated, remote attacker to cause a deni… CWE-20
 Improper Input Validation  		CVE-2018-0418 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247065 6.8 MEDIUM
Adjacent 		cisco wap121_firmware
wap125_firmware
wap131_firmware
wap150_firmware
wap321_firmware
wap351_firmware
wap361_firmware
wap371_firmware 		A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie… CWE-388
 7PK - Errors 		CVE-2018-0415 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247066 5.3 MEDIUM
Adjacent 		cisco wap121_firmware
wap125_firmware
wap131_firmware
wap150_firmware
wap321_firmware
wap351_firmware
wap361_firmware
wap371_firmware 		A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie… NVD-CWE-noinfo
CVE-2018-0412 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247067 8.6 HIGH
Network 		cisco web_security_appliance A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial … CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-0410 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247068 7.5 HIGH
Network 		cisco telepresence_video_communication_server
unified_communications_manager_im_and_presence_service 		A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway coul… CWE-125
Out-of-bounds Read 		CVE-2018-0409 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247069 6.1 MEDIUM
Network 		cisco unified_communications_domain_manager
hosted_collaboration_solution 		A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on an affected system. The vulne… CWE-79
Cross-site Scripting 		CVE-2018-0386 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm
247070 5.4 MEDIUM
Network 		cisco registered_envelope_service A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a u… CWE-79
Cross-site Scripting 		CVE-2018-0367 2024-11-21 12:38 2018-08-16 Show GitHub Exploit DB Packet Storm