Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256991	7.5	危険	日立	-	Cosminexus、Processing Kit for XML および Hitachi Developer's Kit for Java におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-02-2 11:42	2009-12-22	Show	GitHub Exploit DB Packet Storm

256992	4.3	警告	VMware	-	複数の VMware 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3731	2010-02-1 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

256993	10	危険	サイバートラスト株式会社 Linux	-	Linux kernel および gxsnmp パッケージの asn1 の実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2008-1673	2010-02-1 11:51	2008-06-10	Show	GitHub Exploit DB Packet Storm

256994	10	危険	ヒューレット・パッカード	-	複数の Symantec 製品の VRTSweb における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-3027	2010-02-1 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

256995	9.3	危険	KDE project Glyph & Cog, LLC GNOME Project サイバートラスト株式会社レッドハット	-	Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4035	2010-01-29 09:54	2009-12-16	Show	GitHub Exploit DB Packet Storm

256996	7.8	危険	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3987	2010-01-29 09:54	2009-12-15	Show	GitHub Exploit DB Packet Storm

256997	7.6	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3986	2010-01-29 09:54	2009-12-15	Show	GitHub Exploit DB Packet Storm

256998	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性	CWE-Other その他	CVE-2009-3985	2010-01-29 09:53	2009-12-15	Show	GitHub Exploit DB Packet Storm

256999	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性	CWE-Other その他	CVE-2009-3984	2010-01-29 09:53	2009-12-15	Show	GitHub Exploit DB Packet Storm

257000	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性	CWE-Other その他	CVE-2009-3983	2010-01-29 09:53	2009-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257821	9.8	CRITICAL Network	korenix	jetnet5018g_firmware jetnet5310g_firmware jetnet5428g-2g-2fx_firmware jetnet5628g_firmware jetnet5628g-r_firmware jetnet5728g-24p_firmware jetnet5828g_firmware jetnet6710g_firmwa…	A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G versio…	CWE-798 Use of Hard-coded Credentials	CVE-2017-14027	2024-11-21 12:11	2017-11-1	Show	GitHub Exploit DB Packet Storm

257822	9.8	CRITICAL Network	korenix	jetnet5018g_firmware jetnet5310g_firmware jetnet5428g-2g-2fx_firmware jetnet5628g_firmware jetnet5628g-r_firmware jetnet5728g-24p_firmware jetnet5828g_firmware jetnet6710g_firmwa…	A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G …	CWE-798 Use of Hard-coded Credentials	CVE-2017-14021	2024-11-21 12:11	2017-11-1	Show	GitHub Exploit DB Packet Storm

257823	5.7	MEDIUM Adjacent	symantec	endpoint_encryption	In Symantec Endpoint Encryption before SEE 11.1.3HF3, a kernel memory leak is a type of resource leak that can occur when a computer program incorrectly manages memory allocations in such a way that …	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-13683	2024-11-21 12:11	2017-10-24	Show	GitHub Exploit DB Packet Storm

257824	5.7	MEDIUM Adjacent	symantec	encryption_desktop	In Symantec Encryption Desktop before SED 10.4.1 MP2HF1, a kernel memory leak is a type of resource leak that can occur when a computer program incorrectly manages memory allocations in such a way th…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-13682	2024-11-21 12:11	2017-10-24	Show	GitHub Exploit DB Packet Storm

257825	8.8	HIGH Network	tp-link	wr940n_firmware	Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the (1) ping_addr parameter to PingIframeRp…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-13772	2024-11-21 12:11	2017-10-24	Show	GitHub Exploit DB Packet Storm

257826	6.7	MEDIUM Local	progea	movicon	An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and prior. An unquoted search path or element vulnerability has been identified, which may allow an authori…	CWE-428 Unquoted Search Path or Element	CVE-2017-14019	2024-11-21 12:11	2017-10-20	Show	GitHub Exploit DB Packet Storm

257827	7.8	HIGH Local	progea	movicon	An Uncontrolled Search Path Element issue was discovered in Progea Movicon Version 11.5.1181 and prior. An uncontrolled search path element vulnerability has been identified, which may allow a remote…	CWE-427 Uncontrolled Search Path Element	CVE-2017-14017	2024-11-21 12:11	2017-10-20	Show	GitHub Exploit DB Packet Storm

257828	5.6	MEDIUM Network	prominent	multiflex_m10a_controller_firmware	A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX M10a Controller web interface. The log out function in the application removes the user's session only on…	CWE-669 Incorrect Resource Transfer Between Spheres	CVE-2017-14013	2024-11-21 12:11	2017-10-18	Show	GitHub Exploit DB Packet Storm

257829	8.8	HIGH Network	prominent	multiflex_m10a_controller_firmware	A Cross-Site Request Forgery issue was discovered in ProMinent MultiFLEX M10a Controller web interface. The application does not sufficiently verify requests, making it susceptible to cross-site requ…	CWE-352 Origin Validation Error	CVE-2017-14011	2024-11-21 12:11	2017-10-18	Show	GitHub Exploit DB Packet Storm

257830	6.5	MEDIUM Network	prominent	multiflex_m10a_controller_firmware	An Information Exposure issue was discovered in ProMinent MultiFLEX M10a Controller web interface. When an authenticated user uses the Change Password feature on the application, the current password…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2017-14009	2024-11-21 12:11	2017-10-18	Show	GitHub Exploit DB Packet Storm