Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257091	7.2	危険	VMware	-	VMware Fusion の vmx86 のカーネル拡張における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3281	2010-03-24 12:22	2009-10-1	Show	GitHub Exploit DB Packet Storm

257092	9.3	危険	VMware	-	複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2628	2010-03-24 12:22	2009-09-4	Show	GitHub Exploit DB Packet Storm

257093	9.3	危険	VMware	-	複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0199	2010-03-24 12:22	2009-09-4	Show	GitHub Exploit DB Packet Storm

257094	5	警告	VMware	-	VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2968	2010-03-24 12:22	2009-08-31	Show	GitHub Exploit DB Packet Storm

257095	4	警告	VMware	-	複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1805	2010-03-24 12:22	2009-05-28	Show	GitHub Exploit DB Packet Storm

257096	6.8	警告	VMware	-	複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-1244	2010-03-24 12:21	2009-04-10	Show	GitHub Exploit DB Packet Storm

257097	7.2	危険	VMware	-	複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性	CWE-noinfo 情報不足	CVE-2009-1147	2010-03-24 12:21	2009-04-3	Show	GitHub Exploit DB Packet Storm

257098	4.9	警告	VMware	-	複数の VMware 製品の ioctl におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1146	2010-03-23 14:11	2010-04-3	Show	GitHub Exploit DB Packet Storm

257099	6.8	警告	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0910	2010-03-23 14:11	2010-04-3	Show	GitHub Exploit DB Packet Storm

257100	9.3	危険	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0909	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248641	7.8	HIGH Local	rubygems	rubygems	RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains…	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000074	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248642	7.5	HIGH Network	rubygems	rubygems	RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains…	CWE-59 Link Following	CVE-2018-1000073	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248643	7.5	HIGH Network	iredmail	iredmail	iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in Roundcube Webmail that can result in Exfiltrate a user's password protected secret GPG key file and other imp…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-1000072	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248644	7.5	HIGH Network	roundcube	webmail	roundcube version 1.3.4 and earlier contains an Insecure Permissions vulnerability in enigma plugin that can result in exfiltration of gpg private key. This attack appear to be exploitable via networ…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-1000071	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248645	5.5	MEDIUM Local	freeplane debian	freeplane debian_linux	FreePlane version 1.5.9 and earlier contains a XML External Entity (XXE) vulnerability in XML Parser in mindmap loader that can result in stealing data from victim's machine. This attack appears to r…	CWE-611 XXE	CVE-2018-1000069	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248646	8.8	HIGH Network	bitmessage	pybitmessage	Bitmessage PyBitmessage version v0.6.2 (and introduced in or after commit 8ce72d8d2d25973b7064b1cf76a6b0b3d62f0ba0) contains a Eval injection vulnerability in main program, file src/messagetypes/__in…	CWE-94 Code Injection	CVE-2018-1000070	2024-11-21 12:39	2018-03-14	Show	GitHub Exploit DB Packet Storm

248647	4.3	MEDIUM Network	jenkins	promoted_builds	An improper authorization vulnerability exists in Jenkins Promoted Builds Plugin 2.31.1 and earlier in Status.java and ManualCondition.java that allow an attacker with read access to jobs to perform …	CWE-863 Incorrect Authorization	CVE-2018-1000114	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

248648	5.4	MEDIUM Network	jenkins	testlink	A cross-site scripting vulnerability exists in Jenkins TestLink Plugin 2.12 and earlier in TestLinkBuildAction/summary.jelly and others that allow an attacker who can control e.g. TestLink report nam…	CWE-79 Cross-site Scripting	CVE-2018-1000113	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

248649	5.3	MEDIUM Network	jenkins	mercurial	An improper authorization vulnerability exists in Jenkins Mercurial Plugin version 2.2 and earlier in MercurialStatus.java that allows an attacker with network access to obtain a list of nodes and us…	CWE-863 Incorrect Authorization	CVE-2018-1000112	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm

248650	5.3	MEDIUM Network	jenkins	subversion	An improper authorization vulnerability exists in Jenkins Subversion Plugin version 2.10.2 and earlier in SubversionStatus.java and SubversionRepositoryStatus.java that allows an attacker with networ…	CWE-863 Incorrect Authorization	CVE-2018-1000111	2024-11-21 12:39	2018-03-13	Show	GitHub Exploit DB Packet Storm