Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256831	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 CWE-Other	CVE-2010-0032	2010-03-2 11:28	2010-02-9	Show	GitHub Exploit DB Packet Storm

256832	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0031	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

256833	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0030	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

256834	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0029	2010-03-2 11:26	2010-02-9	Show	GitHub Exploit DB Packet Storm

256835	10	危険	マイクロソフト	-	Microsoft Office の MSO.DLL におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0243	2010-03-1 11:37	2010-02-9	Show	GitHub Exploit DB Packet Storm

256836	9.3	危険	マイクロソフト	-	Microsoft DirectX の DirectShow におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0250	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

256837	7.8	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0242	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

256838	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0241	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

256839	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0240	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

256840	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0239	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249291	8.1	HIGH Network	opensuse	libzypp	In libzypp before 20170803 it was possible to add unsigned YUM repositories without warning to the user that could lead to man in the middle or malicious servers to inject malicious RPM packages into…	CWE-20 Improper Input Validation	CVE-2017-7435	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

249292	9.1	CRITICAL Network	netiq	identity_manager	The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.	CWE-611 XXE	CVE-2017-7426	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

249293	9.8	CRITICAL Network	xmlsoft google debian	libxml2 android debian_linux	Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7376	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

249294	9.8	CRITICAL Network	xmlsoft debian google	libxml2 debian_linux android	A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD …	CWE-611 XXE	CVE-2017-7375	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

249295	8.8	HIGH Network	vanderbilt	redcap	A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.	CWE-89 SQL Injection	CVE-2017-7351	2024-11-21 12:31	2018-02-9	Show	GitHub Exploit DB Packet Storm

249296	7.8	HIGH Local	yandex	yandex_browser	Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll.	CWE-426 Untrusted Search Path	CVE-2017-7327	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

249297	7.5	HIGH Network	yandex	yandex_browser	Race condition issue in Yandex Browser for Android before 17.4.0.16 allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page	CWE-362 Race Condition	CVE-2017-7326	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

249298	7.5	HIGH Network	yandex	yandex_browser	Yandex Browser before 16.9.0 allows remote attackers to spoof the address bar via window.open.	CWE-20 Improper Input Validation	CVE-2017-7325	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

249299	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7163	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

249300	7.8	HIGH Local	apple	iphone_os mac_os_x watchos tvos	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7162	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed