Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257631 7.2 危険 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-0233 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257632 6.3 警告 マイクロソフト - Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0035 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257633 7.1 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-0021 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257634 10 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性 CWE-264
CWE-310
CVE-2010-0231 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257635 7.8 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0022 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257636 9 危険 マイクロソフト - Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性 CWE-20
CWE-94
CVE-2010-0020 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257637 6.9 警告 マイクロソフト - Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0023 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257638 4 警告 マイクロソフト - Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0026 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257639 9.3 危険 日本電気
アップル
富士通
古河電気工業
ヒューレット・パッカード
インターネットイニシアティブ
アラクサラネットワークス
日立		 - IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2476 2010-03-3 11:43 2008-10-3 Show GitHub Exploit DB Packet Storm
257640 9.3 危険 マイクロソフト - Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0034 2010-03-2 11:29 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280061 - sap afaria The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote attackers to have unspecified impact via a crafted request, aka SAP Security Note 2134905. CWE-284
Improper Access Control 		CVE-2015-2816 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280062 - sap netweaver Buffer overflow in the C_SAPGPARAM function in the NetWeaver Dispatcher in SAP KERNEL 7.00 (7000.52.12.34966) and 7.40 (7400.12.21.30308) allows remote authenticated users to cause a denial of servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2815 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280063 - sap clinical_task_tracker
emr_unwired 		SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl,… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2814 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280064 - sap mobile_platform XML external entity (XXE) vulnerability in SAP Mobile Platform allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2125358. NVD-CWE-Other
CVE-2015-2813 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280065 - sap netweaver_enterprise_portal XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Secur… NVD-CWE-Other
CVE-2015-2812 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280066 - sap netweaver_enterprise_portal XML external entity (XXE) vulnerability in ReportXmlViewer in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Not… NVD-CWE-Other
CVE-2015-2811 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280067 - debian
xen
fedoraproject
canonical 		debian_linux
xen
fedora
ubuntu_linux 		QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2756 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280068 - ab_google_map_travel_project ab_google_map_travel Multiple cross-site request forgery (CSRF) vulnerabilities in the AB Google Map Travel (AB-MAP) plugin before 4.0 for WordPress allow remote attackers to hijack the authentication of administrators f… CWE-352
 Origin Validation Error 		CVE-2015-2755 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280069 - synology diskstation_manager The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM) before 3.1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attack… CWE-200
Information Exposure 		CVE-2015-2809 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm
280070 - oracle
debian
redhat
suse
opensuse
canonical
fujitsu
huawei
ibm 		http_server
integrated_lights_out_manager_firmware
communications_application_session_controller
communications_policy_management
debian_linux
enterprise_linux_desktop
enterprise_li… 		The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to cond… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2015-2808 2024-11-21 11:28 2015-04-1 Show GitHub Exploit DB Packet Storm