Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257461 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
257462 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
257463 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
257464 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
257465 6.9 警告 マイクロソフト - Microsoft Windows における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3966 2011-01-14 15:42 2010-12-14 Show GitHub Exploit DB Packet Storm
257466 6.9 警告 マイクロソフト - Windows Media Encoder における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3965 2011-01-14 15:39 2010-12-14 Show GitHub Exploit DB Packet Storm
257467 6.9 警告 マイクロソフト - Microsoft Windows Movie Maker における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3967 2011-01-14 15:36 2010-12-14 Show GitHub Exploit DB Packet Storm
257468 7.2 危険 マイクロソフト - Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3338 2011-01-14 15:31 2010-12-14 Show GitHub Exploit DB Packet Storm
257469 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3959 2011-01-14 15:27 2010-12-14 Show GitHub Exploit DB Packet Storm
257470 5 警告 アップル
サイバートラスト株式会社
OpenLDAP Foundation
ターボリナックス
VMware
レッドハット		 - OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0212 2011-01-14 14:45 2010-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256991 6.4 MEDIUM
Physics 		google android On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in … NVD-CWE-noinfo
CVE-2017-3749 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
256992 7.8 HIGH
Local 		google android On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly k… NVD-CWE-noinfo
CVE-2017-3748 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
256993 5.5 MEDIUM
Local 		lenovo nerve_center Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileg… NVD-CWE-noinfo
CVE-2017-3747 2024-11-21 12:26 2017-06-30 Show GitHub Exploit DB Packet Storm
256994 5.4 MEDIUM
Network 		mcafee data_loss_prevention_endpoint Cross Site Scripting (XSS) in IMG Tags in the ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x allows authenticated users to inject arbitrary web script or HTML via injecti… CWE-79
Cross-site Scripting 		CVE-2017-3948 2024-11-21 12:26 2017-06-23 Show GitHub Exploit DB Packet Storm
256995 9.8 CRITICAL
Network 		emc avamar_server In EMC Avamar Server Software 7.4.1-58, 7.4.0-242, 7.3.1-125, 7.3.0-233, 7.3.0-226, an unauthorized attacker may leverage the file upload feature of the system maintenance page to load a maliciously … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-4990 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
256996 9.8 CRITICAL
Network 		emc avamar_server In EMC Avamar Server Software 7.3.1-125, 7.3.0-233, 7.3.0-226, 7.2.1-32, 7.2.1-31, 7.2.0-401, an unauthenticated remote attacker may potentially bypass the authentication process to gain access to th… CWE-287
Improper Authentication 		CVE-2017-4989 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
256997 7.2 HIGH
Network 		emc isilon_onefs EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected syste… NVD-CWE-noinfo
CVE-2017-4988 2024-11-21 12:26 2017-06-22 Show GitHub Exploit DB Packet Storm
256998 7.8 HIGH
Local 		lenovo xclarity_administrator In Lenovo XClarity Administrator (LXCA) before 1.3.0, if service data is downloaded from LXCA, a non-administrative user may have access to password information for users that have previously authent… CWE-287
Improper Authentication 		CVE-2017-3745 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm
256999 6.5 MEDIUM
Network 		lenovo
ibm 		integrated_management_module_firmware In the IMM2 firmware of Lenovo System x servers, remote commands issued by LXCA or other utilities may be captured in the First Failure Data Capture (FFDC) service log if the service log is generated… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-3744 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm
257000 7.5 HIGH
Network 		lenovo toolscenter_dynamic_system_analysis
advanced_settings_utility
updatexpress_system_pack_installer 		If multiple users are concurrently logged into a single system where one user is sending a command via the Lenovo ToolsCenter Advanced Settings Utility (ASU), UpdateXpress System Pack Installer (UXSP… CWE-200
Information Exposure 		CVE-2017-3743 2024-11-21 12:26 2017-06-20 Show GitHub Exploit DB Packet Storm