Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257031 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257032 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257033 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257034 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
257035 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
257036 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
257037 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
257038 4.4 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1337 2010-01-21 11:23 2009-04-22 Show GitHub Exploit DB Packet Storm
257039 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5300 2010-01-21 11:22 2008-12-1 Show GitHub Exploit DB Packet Storm
257040 6.8 警告 シスコシステムズ - 複数の SSL VPN (Web VPN) 製品においてウェブブラウザのセキュリティが迂回される問題 CWE-264
認可・権限・アクセス制御 		CVE-2009-2631 2010-01-20 14:15 2009-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264971 8.8 HIGH
Network 		redhat cloudforms The web UI in Red Hat CloudForms 4.1 allows remote authenticated users to execute arbitrary code via vectors involving "Lack of field filters." CWE-284
Improper Access Control 		CVE-2016-5383 2024-11-21 11:54 2016-08-26 Show GitHub Exploit DB Packet Storm
264972 7.5 HIGH
Network 		ultravnc repeater UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP addre… CWE-284
Improper Access Control 		CVE-2016-5673 2024-11-21 11:54 2016-08-26 Show GitHub Exploit DB Packet Storm
264973 9.8 CRITICAL
Network 		dlink
d-link 		dir-868l_firmware
dir-822_firmware
dir-880l_firmware
dir-850l_firmare
dir-895l_firmware
dir-817l\(w\)_firmware
dir-818l\(w\)_firmware
dir-890l_firmware
dir-823_firmware
dir… 		Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03beta03, DIR-822 C1 3.01 before 3.01WWb02, DIR-823 A1 1.00 before 1.00W… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5681 2024-11-21 11:54 2016-08-26 Show GitHub Exploit DB Packet Storm
264974 7.5 HIGH
Network 		zmodo zp-ibh-13w
zp-ne-14-s 		ZModo ZP-NE14-S and ZP-IBH-13W devices do not enforce a WPA2 configuration setting, which allows remote attackers to trigger association with an arbitrary access point by using a recognized SSID valu… CWE-284
Improper Access Control 		CVE-2016-5650 2024-11-21 11:54 2016-08-24 Show GitHub Exploit DB Packet Storm
264975 7.3 HIGH
Network 		rockwellautomation 1766-l32bxb
1766-l32bwaa
1766-l32awaa
1766-l32bwa
1766-l32awa
1766-l32bxba 		Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote a… CWE-284
Improper Access Control 		CVE-2016-5645 2024-11-21 11:54 2016-08-24 Show GitHub Exploit DB Packet Storm
264976 5.3 MEDIUM
Network 		theforeman foreman Foreman before 1.11.4 and 1.12.x before 1.12.1 allow remote authenticated users with the view_hosts permission containing a filter to obtain sensitive network interface information via a request to A… CWE-200
Information Exposure 		CVE-2016-5390 2024-11-21 11:54 2016-08-20 Show GitHub Exploit DB Packet Storm
264977 7.5 HIGH
Network 		f5 big-ip_application_acceleration_manager
big-ip_webaccelerator
big-ip_analytics
big-ip_domain_name_system
big-ip_edge_gateway
big-ip_access_policy_manager
big-ip_local_traffic_manage… 		The default configuration of the IPsec IKE peer listener in F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.1 before HF16, 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before 11.6.1, and 12.… CWE-284
Improper Access Control 		CVE-2016-5736 2024-11-21 11:54 2016-08-20 Show GitHub Exploit DB Packet Storm
264978 7.8 HIGH
Local 		fedoraproject
fontconfig_project
debian
canonical 		fedora
fontconfig
debian_linux
ubuntu_linux 		fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks and execute arbitrary code via a crafted cach… CWE-415
 Double Free 		CVE-2016-5384 2024-11-21 11:54 2016-08-13 Show GitHub Exploit DB Packet Storm
264979 8.1 HIGH
Network 		opensuse
haxx
canonical
debian
fedoraproject 		leap
libcurl
ubuntu_linux
debian_linux
fedora
opensuse 		Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors. CWE-416
 Use After Free 		CVE-2016-5421 2024-11-21 11:54 2016-08-10 Show GitHub Exploit DB Packet Storm
264980 7.5 HIGH
Network 		debian
haxx
opensuse 		debian_linux
libcurl
leap 		curl and libcurl before 7.50.1 do not check the client certificate when choosing the TLS connection to reuse, which might allow remote attackers to hijack the authentication of the connection by leve… CWE-285
Improper Authorization 		CVE-2016-5420 2024-11-21 11:54 2016-08-10 Show GitHub Exploit DB Packet Storm