Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257411	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3134	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257412	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3132	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257413	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3131	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

257414	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3128	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

257415	9.3	危険	マイクロソフト	-	Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3127	2010-01-5 16:16	2009-11-10	Show	GitHub Exploit DB Packet Storm

257416	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

257417	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257418	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257419	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257420	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266191	7.8	HIGH Local	google	android	An elevation of privilege vulnerability in libzipfile in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable a local malicious application to execute arbitrary code with…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6700	2024-11-21 11:56	2016-11-26	Show	GitHub Exploit DB Packet Storm

266192	5.5	MEDIUM Local	google	android	An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m…	CWE-200 Information Exposure	CVE-2016-6698	2024-11-21 11:56	2016-11-26	Show	GitHub Exploit DB Packet Storm

266193	6.1	MEDIUM Network	cisco	unified_communications_manager	A vulnerability in several parameters of the ccmivr page of Cisco Unified Communication Manager (CallManager) could allow an unauthenticated, remote attacker to launch a cross-site scripting (XSS) at…	CWE-79 Cross-site Scripting	CVE-2016-6472	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266194	5.9	MEDIUM Network	cisco	adaptive_security_appliance_software	A vulnerability in the HTTP web-based management interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to inject arbitrary XML commands on the affec…	CWE-20 Improper Input Validation	CVE-2016-6461	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266195	5.5	MEDIUM Local	cisco	telepresence_tc_software	Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could allow an authenticated, local attacker to execute a local shell command injection. More Information: C…	CWE-78 OS Command	CVE-2016-6459	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266196	7.5	HIGH Network	cisco	asr_5000_series_software virtualized_packet_core	A vulnerability in the IPsec component of StarOS for Cisco ASR 5000 Series routers could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels fr…	CWE-399 Resource Management Errors	CVE-2016-6466	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266197	5.3	MEDIUM Network	cisco	email_security_appliance_firmware	A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protectio…	CWE-20 Improper Input Validation	CVE-2016-6463	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266198	5.3	MEDIUM Network	cisco	email_security_appliance_firmware	A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protectio…	CWE-20 Improper Input Validation	CVE-2016-6462	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266199	7.5	HIGH Network	cisco	firesight_system_software	A vulnerability in the FTP Representational State Transfer Application Programming Interface (REST API) for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass F…	CWE-254 7PK - Security Features	CVE-2016-6460	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm

266200	7.5	HIGH Network	cisco	email_security_appliance_firmware	A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass content filters configur…	CWE-20 Improper Input Validation	CVE-2016-6458	2024-11-21 11:56	2016-11-19	Show	GitHub Exploit DB Packet Storm