Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257131 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
257132 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
257133 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
257134 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
257135 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257136 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257137 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257138 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
257139 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
257140 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314131 7.8 HIGH
Local 		autodesk revit A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, o… CWE-787
 Out-of-bounds Write 		CVE-2024-7994 2024-10-22 03:35 2024-10-17 Show GitHub Exploit DB Packet Storm
314132 7.8 HIGH
Local 		autodesk revit A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or exec… CWE-787
 Out-of-bounds Write 		CVE-2024-7993 2024-10-22 03:27 2024-10-17 Show GitHub Exploit DB Packet Storm
314133 4.9 MEDIUM
Network 		oracle application_express Vulnerability in Oracle Application Express (component: General). Supported versions that are affected are 23.2 and 24.1. Difficult to exploit vulnerability allows low privileged attacker with netw… NVD-CWE-noinfo
CVE-2024-21261 2024-10-22 03:27 2024-10-16 Show GitHub Exploit DB Packet Storm
314134 8.8 HIGH
Network 		vmware vmware_hcx An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted … CWE-89
SQL Injection 		CVE-2024-38814 2024-10-22 03:20 2024-10-17 Show GitHub Exploit DB Packet Storm
314135 7.5 HIGH
Network 		microsoft .net
visual_studio_2022 		.NET and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43485 2024-10-22 03:01 2024-10-9 Show GitHub Exploit DB Packet Storm
314136 7.5 HIGH
Network 		microsoft .net_framework
.net
visual_studio_2022 		.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43484 2024-10-22 02:35 2024-10-9 Show GitHub Exploit DB Packet Storm
314137 7.5 HIGH
Network 		microsoft .net_framework
.net
visual_studio_2022 		.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2024-43483 2024-10-22 02:35 2024-10-9 Show GitHub Exploit DB Packet Storm
314138 - microsoft internet_explorer The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ… CWE-94
Code Injection 		CVE-2010-1260 2024-10-22 02:35 2010-06-9 Show GitHub Exploit DB Packet Storm
314139 - microsoft internet_explorer
windows_2003_server
windows_7
windows_server_2003
windows_server_2008
windows_vista
windows_xp 		Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and de… CWE-94
Code Injection 		CVE-2010-0492 2024-10-22 02:35 2010-04-1 Show GitHub Exploit DB Packet Storm
314140 - microsoft internet_explorer Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0248 2024-10-22 02:35 2010-01-23 Show GitHub Exploit DB Packet Storm