Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257011	4.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の NFSv4 における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3286	2010-01-26 11:38	2009-09-22	Show	GitHub Exploit DB Packet Storm

257012	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux Kernel の d_delete 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-2908	2010-01-26 11:38	2009-10-13	Show	GitHub Exploit DB Packet Storm

257013	7.2	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux Kernel における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2009-2695	2010-01-26 11:38	2009-08-28	Show	GitHub Exploit DB Packet Storm

257014	9.3	危険	アップルサイバートラスト株式会社サン・マイクロシステムズレッドハット	-	JDK および JRE の Sun Java SE にある Deployment Toolkit プラグインにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3865	2010-01-26 11:37	2009-11-3	Show	GitHub Exploit DB Packet Storm

257015	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3228	2010-01-26 11:37	2009-10-19	Show	GitHub Exploit DB Packet Storm

257016	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo32 コーデックの ir32_32.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4313	2010-01-25 11:53	2009-12-8	Show	GitHub Exploit DB Packet Storm

257017	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4312	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

257018	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4311	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

257019	9.3	危険	マイクロソフト	-	Indeo コーデックに複数の脆弱性	CWE-119 バッファエラー	CVE-2009-4310	2010-01-25 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

257020	9.3	危険	マイクロソフト	-	Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4309	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247061	6.7	MEDIUM Local	cisco	web_security_appliance	A vulnerability in the account management subsystem of Cisco Web Security Appliance (WSA) could allow an authenticated, local attacker to elevate privileges to root. The attacker must authenticate wi…	CWE-269 Improper Privilege Management	CVE-2018-0428	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247062	8.8	HIGH Network	cisco	application_policy_infrastructure_controller_enterprise_module	A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center could allow an authenticated, remote attacker to perform a command injection attack. The vulnerability …	CWE-78 OS Command	CVE-2018-0427	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247063	7.5	HIGH Network	cisco	email_security_appliance	A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass the filtering functionality of an affecte…	CWE-20 Improper Input Validation	CVE-2018-0419	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247064	8.6	HIGH Network	cisco	ios_xr	A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software could allow an unauthenticated, remote attacker to cause a deni…	CWE-20 Improper Input Validation	CVE-2018-0418	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247065	6.8	MEDIUM Adjacent	cisco	wap121_firmware wap125_firmware wap131_firmware wap150_firmware wap321_firmware wap351_firmware wap361_firmware wap371_firmware	A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie…	CWE-388 7PK - Errors	CVE-2018-0415	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247066	5.3	MEDIUM Adjacent	cisco	wap121_firmware wap125_firmware wap131_firmware wap150_firmware wap321_firmware wap351_firmware wap361_firmware wap371_firmware	A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Serie…	NVD-CWE-noinfo	CVE-2018-0412	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247067	8.6	HIGH Network	cisco	web_security_appliance	A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, remote attacker to exhaust system memory and cause a denial …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-0410	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247068	7.5	HIGH Network	cisco	telepresence_video_communication_server unified_communications_manager_im_and_presence_service	A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway coul…	CWE-125 Out-of-bounds Read	CVE-2018-0409	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247069	6.1	MEDIUM Network	cisco	unified_communications_domain_manager hosted_collaboration_solution	A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on an affected system. The vulne…	CWE-79 Cross-site Scripting	CVE-2018-0386	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm

247070	5.4	MEDIUM Network	cisco	registered_envelope_service	A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a u…	CWE-79 Cross-site Scripting	CVE-2018-0367	2024-11-21 12:38	2018-08-16	Show	GitHub Exploit DB Packet Storm