Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257691 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
257692 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
257693 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
257694 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
257695 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
257696 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
257697 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
257698 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
257699 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
257700 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264881 7.5 HIGH
Local 		citrix xenserver The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9637 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
264882 9.1 CRITICAL
Network 		ibm websphere_message_broker
integration_bus 		IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remot… CWE-611
XXE 		CVE-2016-9706 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
264883 7.8 HIGH
Local 		jasper_project
debian
redhat 		jasper
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus 		Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image. CWE-787
 Out-of-bounds Write 		CVE-2016-9560 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
264884 5.3 MEDIUM
Physics 		bd alaris_8015_pc_unit An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (PC) unit, Version 9.5 and prior versions, and Version 9.7. An unauthorized user with physical access to an Ala… CWE-255
Credentials Management 		CVE-2016-9355 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264885 6.1 MEDIUM
Network 		moxa nport_5100_series_firmware
nport_5200_series_firmware
nport_5400_series_firmware
nport_5600_series_firmware
nport_5100a_series_firmware
nport_p5150a_series_firmware
nport_5200a_seri… 		An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPor… CWE-79
Cross-site Scripting 		CVE-2016-9371 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264886 9.8 CRITICAL
Network 		moxa nport_5100_series_firmware
nport_5200_series_firmware
nport_5400_series_firmware
nport_5600_series_firmware
nport_5100a_series_firmware
nport_p5150a_series_firmware
nport_5200a_seri… 		An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPor… CWE-287
Improper Authentication 		CVE-2016-9369 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264887 7.5 HIGH
Network 		fidelex fx-2030a_firmware
fx-2030a-basic_firmware 		An issue was discovered in Fidelix FX-20 series controllers, versions prior to 11.50.19. Arbitrary file reading via path traversal allows an attacker to access arbitrary files and directories on the … CWE-22
Path Traversal 		CVE-2016-9364 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264888 9.1 CRITICAL
Network 		wago pfc200_firmware
750-xxxx_series_firmware
758-xxxx_series_firmware 		An issue was discovered in WAGO 750-8202/PFC200 prior to FW04 (released August 2015), WAGO 750-881 prior to FW09 (released August 2016), and WAGO 0758-0874-0000-0111. By accessing a specific uniform … CWE-287
Improper Authentication 		CVE-2016-9362 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264889 6.7 MEDIUM
Local 		ge cimplicity
historian
ifix 		An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Versi… CWE-522
 Insufficiently Protected Credentials 		CVE-2016-9360 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm
264890 7.8 HIGH
Local 		moxa dacenter An issue was discovered in Moxa DACenter Versions 1.4 and older. The application may suffer from an unquoted search path issue. CWE-284
Improper Access Control 		CVE-2016-9356 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm