Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257301	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3134	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257302	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3132	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257303	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3131	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

257304	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3128	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

257305	9.3	危険	マイクロソフト	-	Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3127	2010-01-5 16:16	2009-11-10	Show	GitHub Exploit DB Packet Storm

257306	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

257307	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257308	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257309	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257310	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249281	6.5	MEDIUM Network	getvera	veraedge_firmware veralite_firmware	An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/po…	CWE-22 Path Traversal	CVE-2017-9382	2024-11-21 12:35	2019-06-18	Show	GitHub Exploit DB Packet Storm

249282	8.8	HIGH Network	getvera	veraedge_firmware veralite_firmware	An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the devi…	CWE-77 Command Injection	CVE-2017-9384	2024-11-21 12:35	2019-06-18	Show	GitHub Exploit DB Packet Storm

249283	8.8	HIGH Network	getvera	veraedge_firmware veralite_firmware	An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a user with the capability of installing or deleting apps on the device using the web management inte…	CWE-352 Origin Validation Error	CVE-2017-9381	2024-11-21 12:35	2019-06-18	Show	GitHub Exploit DB Packet Storm

249284	8.8	HIGH Network	getvera	veraedge_firmware veralite_firmware	An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the devi…	CWE-77 Command Injection	CVE-2017-9388	2024-11-21 12:35	2019-06-18	Show	GitHub Exploit DB Packet Storm

249285	6.5	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	ManageEngine ServiceDesk Plus before 9314 contains a local file inclusion vulnerability in the defModule parameter in DefaultConfigDef.do and AssetDefaultConfigDef.do.	CWE-20 Improper Input Validation	CVE-2017-9376	2024-11-21 12:35	2019-03-26	Show	GitHub Exploit DB Packet Storm

249286	8.8	HIGH Network	zohocorp	manageengine_servicedesk_plus	ManageEngine ServiceDesk Plus before 9312 contains an XML injection at add Configuration items CMDB API.	CWE-611 XXE	CVE-2017-9362	2024-11-21 12:35	2019-03-26	Show	GitHub Exploit DB Packet Storm

249287	9.8	CRITICAL Network	bitdefender	gravityzone	Bitdefender GravityZone VMware appliance before 6.2.1-35 might allow attackers to gain access with root privileges via unspecified vectors.	NVD-CWE-noinfo	CVE-2017-8931	2024-11-21 12:35	2018-10-31	Show	GitHub Exploit DB Packet Storm

249288	7.5	HIGH Network	hp	arubaos	Multiple memory corruption flaws are present in ArubaOS which could allow an unauthenticated user to crash ArubaOS processes. With sufficient time and effort, it is possible these vulnerabilities cou…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9003	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm

249289	6.1	MEDIUM Network	hp	aruba_clearpass_policy_manager	All versions of Aruba ClearPass prior to 6.6.8 contain reflected cross-site scripting vulnerabilities. By exploiting this vulnerability, an attacker who can trick a logged-in ClearPass administrative…	CWE-79 Cross-site Scripting	CVE-2017-9002	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm

249290	8.1	HIGH Network	hp	aruba_clearpass_policy_manager	Aruba ClearPass 6.6.3 and later includes a feature called "SSH Lockout", which causes ClearPass to lock accounts with too many login failures through SSH. When this feature is enabled, an unauthentic…	NVD-CWE-noinfo	CVE-2017-9001	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm