Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257571	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4214	2010-04-16 16:58	2009-12-7	Show	GitHub Exploit DB Packet Storm

257572	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3009	2010-04-16 16:58	2009-09-8	Show	GitHub Exploit DB Packet Storm

257573	7.5	危険	アップル Ruby on Rails project	-	Ruby on Rails のダイジェスト認証における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2422	2010-04-16 16:57	2009-07-10	Show	GitHub Exploit DB Packet Storm

257574	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0526	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

257575	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0520	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

257576	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0519	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

257577	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0518	2010-04-16 16:56	2010-03-29	Show	GitHub Exploit DB Packet Storm

257578	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0517	2010-04-16 16:56	2010-03-29	Show	GitHub Exploit DB Packet Storm

257579	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0516	2010-04-15 18:39	2010-03-29	Show	GitHub Exploit DB Packet Storm

257580	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0515	2010-04-15 18:39	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268841	9.8	CRITICAL Network	linux	linux_kernel	drivers/soc/qcom/qdsp6v2/voice_svc.c in the QDSP6v2 Voice Service driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other product…	CWE-120 Classic Buffer Overflow	CVE-2016-5343	2024-11-21 11:54	2016-10-10	Show	GitHub Exploit DB Packet Storm

268842	9.8	CRITICAL Network	f5	big-ip_local_traffic_manager	F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF…	CWE-284 Improper Access Control	CVE-2016-5745	2024-11-21 11:54	2016-10-6	Show	GitHub Exploit DB Packet Storm

268843	9.8	CRITICAL Network	animas	onetouch_ping_firmware	Johnson & Johnson Animas OneTouch Ping devices mishandle acknowledgements, which makes it easier for remote attackers to bypass authentication via a custom communication protocol.	CWE-287 Improper Authentication	CVE-2016-5686	2024-11-21 11:54	2016-10-5	Show	GitHub Exploit DB Packet Storm

268844	3.3	LOW Local	redhat	enterprise_virtualization	The ovirt-engine-provisiondb utility in Red Hat Enterprise Virtualization (RHEV) Engine 4.0 allows local users to obtain sensitive database provisioning information by reading log files.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2016-5432	2024-11-21 11:54	2016-10-4	Show	GitHub Exploit DB Packet Storm

268845	5.4	MEDIUM Network	redhat	jboss_bpm_suite	Cross-site scripting (XSS) vulnerability in Business Process Editor in Red Hat JBoss BPM Suite before 6.3.3 allows remote authenticated users to inject arbitrary web script or HTML by levering permis…	CWE-79 Cross-site Scripting	CVE-2016-5398	2024-11-21 11:54	2016-10-4	Show	GitHub Exploit DB Packet Storm

268846	9.8	CRITICAL Network	f5	big-ip_policy_enforcement_manager big-ip_local_traffic_manager big-ip_websafe big-ip_link_controller big-ip_application_acceleration_manager big-ip_access_policy_manager big-ip_adva…	Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2, when configured wit…	CWE-284 Improper Access Control	CVE-2016-5700	2024-11-21 11:54	2016-10-4	Show	GitHub Exploit DB Packet Storm

268847	5.1	MEDIUM Local	opensuse yast	libstorage-ng yast-storage libstorage leap	libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by re…	NVD-CWE-Other	CVE-2016-5746	2024-11-21 11:54	2016-09-27	Show	GitHub Exploit DB Packet Storm

268848	8.8	HIGH Network	redhat	jboss_enterprise_application_platform	The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2 allows remote authenticated users to gain privileges by leveraging failure to propagate administrative RB…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5406	2024-11-21 11:54	2016-09-26	Show	GitHub Exploit DB Packet Storm

268849	4.8	MEDIUM Network	apache	ranger	Cross-site scripting (XSS) vulnerability in the create user functionality in the policy admin tool in Apache Ranger before 0.6.1 allows remote authenticated administrators to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2016-5395	2024-11-21 11:54	2016-09-26	Show	GitHub Exploit DB Packet Storm

268850	7.5	HIGH Network	powerdns	authoritative	PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not properly handle a . (dot) inside labels, which allows remote attackers to cause a denial of service (backend CPU consumption) via a cra…	CWE-399 Resource Management Errors	CVE-2016-5427	2024-11-21 11:54	2016-09-21	Show	GitHub Exploit DB Packet Storm