Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257371 6.8 警告 マイクロソフト - Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3675 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
257372 9.3 危険 マイクロソフト - Microsoft Project における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0102 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257373 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257374 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
257375 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257376 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
257377 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
257378 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
257379 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
257380 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248191 5.4 MEDIUM
Network 		jenkins github A server-side request forgery vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubPluginConfig.java that allows attackers with Overall/Read access to cause Jenkins to send a GET r… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-1000184 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
248192 6.5 MEDIUM
Network 		jenkins github A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.0 and older in GitHubServerConfig.java that allows attackers with Overall/Read access to connect to an attacker-… CWE-200
Information Exposure 		CVE-2018-1000183 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
248193 6.4 MEDIUM
Network 		jenkins git A server-side request forgery vulnerability exists in Jenkins Git Plugin 3.9.0 and older in AssemblaWeb.java, GitBlitRepositoryBrowser.java, Gitiles.java, TFS2013GitRepositoryBrowser.java, ViewGitWeb… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-1000182 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
248194 5.5 MEDIUM
Local 		linux linux_kernel The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed proces… CWE-476
 NULL Pointer Dereference 		CVE-2018-1000200 2024-11-21 12:39 2018-06-5 Show GitHub Exploit DB Packet Storm
248195 7.5 HIGH
Network 		ibm kitura Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure. CWE-200
Information Exposure 		CVE-2018-1000181 2024-11-21 12:39 2018-06-5 Show GitHub Exploit DB Packet Storm
248196 7.5 HIGH
Network 		bouncycastle
debian
oracle
netapp
redhat 		fips_java_api
legion-of-the-bouncy-castle-java-crytography-api
debian_linux
retail_xstore_point_of_service
api_gateway
weblogic_server
enterprise_repository
peoplesoft_enterprise… 		Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2018-1000180 2024-11-21 12:39 2018-06-5 Show GitHub Exploit DB Packet Storm
248197 9.8 CRITICAL
Network 		haxx
canonical 		curl
ubuntu_linux 		curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based me… CWE-787
 Out-of-bounds Write 		CVE-2018-1000300 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
248198 5.5 MEDIUM
Local 		artifex
debian 		mupdf
debian_linux 		In Artifex MuPDF 1.12.0 and earlier, multiple use of uninitialized value bugs in the PDF parser could allow an attacker to cause a denial of service (crash) or influence program flow via a crafted fi… CWE-20
 Improper Input Validation  		CVE-2018-1000040 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
248199 7.8 HIGH
Local 		artifex mupdf In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted fil… CWE-416
 Use After Free 		CVE-2018-1000039 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
248200 9.1 CRITICAL
Network 		debian
canonical
haxx
redhat
oracle 		debian_linux
ubuntu_linux
curl
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_manager_ops_center
peoplesoft_enterprise_peopletools
co… 		curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service that can result in curl can be tricked into reading data beyond the end o… CWE-125
Out-of-bounds Read 		CVE-2018-1000301 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm