Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257421	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257422	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257423	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257424	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246971	9.8	CRITICAL Network	cobbler_project redhat	cobbler satellite	It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler,…	-	CVE-2018-10931	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

246972	7.5	HIGH Network	redhat canonical debian postgresql	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server virtualization enterprise_linux_server_eus openstack ubuntu_linux debian_linux postgresql	A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "h…	CWE-89 SQL Injection	CVE-2018-10915	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

246973	6.3	MEDIUM Local	ovirt redhat	vdsm virtualization	It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2018-10908	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

246974	5.5	MEDIUM Local	ttembed_project	ttembed	An input validation flaw exists in ttembed. With a crafted input file, an attacker may be able to trigger a denial of service condition due to ttembed trusting attacker controlled values.	CWE-20 Improper Input Validation	CVE-2018-10922	2024-11-21 12:42	2018-08-3	Show	GitHub Exploit DB Packet Storm

246975	7.5	HIGH Network	ttembed_project	ttembed	Certain input files may trigger an integer overflow in ttembed input file processing. This overflow could potentially lead to corruption of the input file due to a lack of checking return codes of fg…	CWE-190 Integer Overflow or Wraparound	CVE-2018-10921	2024-11-21 12:42	2018-08-3	Show	GitHub Exploit DB Packet Storm

246976	6.8	MEDIUM Network	nic	knot_resolver	Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache.	CWE-20 Improper Input Validation	CVE-2018-10920	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

246977	7.1	HIGH Local	canonical	cloud-init	The default cloud-init configuration, in cloud-init 0.6.2 and newer, included "ssh_deletekeys: 0", disabling cloud-init's deletion of ssh host keys. In some environments, this could lead to instances…	-	CVE-2018-10896	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

246978	5.4	MEDIUM Network	redhat	keycloak single_sign-on	It was found that SAML authentication in Keycloak 3.4.3.Final incorrectly authenticated expired certificates. A malicious user could use this to access unauthorized data or possibly conduct further a…	CWE-295 Improper Certificate Validation	CVE-2018-10894	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

246979	8.1	HIGH Network	rpm redhat	yum-utils enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server virtualization	A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may…	-	CVE-2018-10897	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

246980	6.5	MEDIUM Network	lftp_project canonical opensuse	lftp ubuntu_linux leap	It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A r…	CWE-20 Improper Input Validation	CVE-2018-10916	2024-11-21 12:42	2018-08-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed