Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256761	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

256762	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

256763	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

256764	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

256765	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256766	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256767	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256768	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256769	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256770	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247411	9.8	CRITICAL Network	ocaml	ocaml	Insufficient sanitisation in the OCaml compiler versions 4.04.0 and 4.04.1 allows external code to be executed with raised privilege in binaries marked as setuid, by setting the CAML_CPLUGINS, CAML_N…	NVD-CWE-noinfo	CVE-2017-9772	2024-11-21 12:36	2017-06-24	Show	GitHub Exploit DB Packet Storm

247412	9.8	CRITICAL Network	vivotek	network_camera_ib8369_firmware network_camera_fd8164_firmware network_camera_fd816ba_firmware	'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote attackers to execute any shell command as root …	CWE-78 OS Command	CVE-2017-9828	2024-11-21 12:36	2017-06-24	Show	GitHub Exploit DB Packet Storm

247413	7.8	HIGH Local	freedesktop debian redhat	poppler debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server…	Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) or possibly have unspe…	CWE-190 Integer Overflow or Wraparound	CVE-2017-9776	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

247414	6.5	MEDIUM Network	freedesktop debian redhat	poppler debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server…	Stack buffer overflow in GfxState.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) via a crafted PDF document.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9775	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

247415	9.8	CRITICAL Network	ideablade	breeze.server.net	IdeaBlade Breeze Breeze.Server.NET before 1.6.5 allows remote attackers to execute arbitrary code, related to use of TypeNameHandling in JSON deserialization.	CWE-502 Deserialization of Untrusted Data	CVE-2017-9424	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

247416	6.5	MEDIUM Network	libtiff canonical	libtiff ubuntu_linux	In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function …	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-9815	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

247417	9.8	CRITICAL Network	openwebif_project	openwebif	An issue was discovered in the OpenWebif plugin through 1.2.4 for E2 open devices. The saveConfig function of "plugin/controllers/models/config.py" performs an eval() call on the contents of the "key…	CWE-94 Code Injection	CVE-2017-9807	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm

247418	5.5	MEDIUM Local	jasper_project	jasper	JasPer 2.0.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec…	CWE-125 Out-of-bounds Read	CVE-2017-9782	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm

247419	6.1	MEDIUM Network	check_mk_project	check_mk	A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.4.0x prior to 1.4.0p6, allowing an unauthenticated remote attacker to inject arbitrary HTML or JavaScript via the _username pa…	CWE-79 Cross-site Scripting	CVE-2017-9781	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm

247420	8.8	HIGH Network	horde	horde_image_api	Remote Code Execution was found in Horde_Image 2.x before 2.5.0 via a crafted GET request. Exploitation requires authentication.	CWE-94 Code Injection	CVE-2017-9774	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm