Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256771 10 危険 オラクル - Oracle Database の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0071 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
256772 5 警告 Pidgin
Adium
レッドハット		 - Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0013 2010-02-10 13:39 2010-01-8 Show GitHub Exploit DB Packet Storm
256773 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3959 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256774 10 危険 アドビシステムズ - Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3958 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256775 5 警告 アドビシステムズ - Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3957 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256776 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるスクリプトインジェクションの脆弱性に関連した脆弱性 CWE-16
環境設定 		CVE-2009-3956 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256777 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3955 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
256778 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の 3D 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3954 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
256779 6.8 警告 サン・マイクロシステムズ - Sun Solaris の Trusted Extensions における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0310 2010-02-10 13:38 2010-01-11 Show GitHub Exploit DB Packet Storm
256780 7.1 危険 アップル
アドビシステムズ		 - Windows 上で稼動する Adobe Flash Player および Adobe AIR の Flash Player の ActiveX コントロールにおけるローカルファイルのファイル名を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3951 2010-02-10 13:36 2009-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265351 9.8 CRITICAL
Network 		openstack python-muranoclient
mitaka-murano
murano-dashboard
murano 		OpenStack Murano before 1.0.3 (liberty) and 2.x before 2.0.1 (mitaka), Murano-dashboard before 1.0.3 (liberty) and 2.x before 2.0.1 (mitaka), and python-muranoclient before 0.7.3 (liberty) and 0.8.x … CWE-20
 Improper Input Validation  		CVE-2016-4972 2024-11-21 11:53 2016-09-27 Show GitHub Exploit DB Packet Storm
265352 6.1 MEDIUM
Network 		redhat jboss_enterprise_application_platform
jboss_wildfly_application_server 		CRLF injection vulnerability in the Undertow web server in WildFly 10.0.0, as used in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2, allows remote attackers to inject arbitrary… CWE-93
CWE-113
CRLF Injection
HTTP Response Splitting 		CVE-2016-4993 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265353 8.8 HIGH
Network 		google chrome Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.113 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2016-5175 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265354 6.5 MEDIUM
Network 		google chrome browser/ui/cocoa/browser_window_controller_private.mm in Google Chrome before 53.0.2785.113 does not process fullscreen toggle requests during a fullscreen transition, which allows remote attackers t… CWE-20
 Improper Input Validation  		CVE-2016-5174 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265355 7.1 HIGH
Network 		google chrome The extensions subsystem in Google Chrome before 53.0.2785.113 does not properly restrict access to Object.prototype, which allows remote attackers to load unintended resources, and consequently trig… CWE-284
Improper Access Control 		CVE-2016-5173 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265356 6.5 MEDIUM
Network 		google
nodejs
debian 		chrome
node.js
debian_linux 		The parser in Google V8, as used in Google Chrome before 53.0.2785.113, mishandles scopes, which allows remote attackers to obtain sensitive information from arbitrary memory locations via crafted Ja… CWE-200
Information Exposure 		CVE-2016-5172 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265357 8.8 HIGH
Network 		google chrome WebKit/Source/bindings/templates/interface.cpp in Blink, as used in Google Chrome before 53.0.2785.113, does not prevent certain constructor calls, which allows remote attackers to cause a denial of … CWE-416
 Use After Free 		CVE-2016-5171 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265358 8.8 HIGH
Network 		google chrome WebKit/Source/bindings/modules/v8/V8BindingForModules.cpp in Blink, as used in Google Chrome before 53.0.2785.113, does not properly consider getter side effects during array key conversion, which al… CWE-416
 Use After Free 		CVE-2016-5170 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265359 8.8 HIGH
Network 		google chrome_os Format string vulnerability in Google Chrome OS before 53.0.2785.103 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. NVD-CWE-noinfo
CVE-2016-5169 2024-11-21 11:53 2016-09-26 Show GitHub Exploit DB Packet Storm
265360 8.8 HIGH
Network 		iodata hvl-a2.0_firmware
hvl-a3.0_firmware
hvl-a4.0_firmware
hvl-at1.0s_firmware
hvl-at2.0_firmware
hvl-at2.0a_firmware
hvl-at3.0_firmware
hvl-at3.0a_firmware
hvl-at4.0_firmware
h… 		Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE HVL-A2.0, HVL-A3.0, HVL-A4.0, HVL-AT1.0S, HVL-AT2.0, HVL-AT3.0, HVL-AT4.0, HVL-AT2.0A, HVL-AT3.0A, and HVL-AT4.0A devices with firmw… CWE-352
 Origin Validation Error 		CVE-2016-4845 2024-11-21 11:53 2016-09-24 Show GitHub Exploit DB Packet Storm