Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257711 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
257712 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
257713 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
257714 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
257715 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
257716 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
257717 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265641 8.8 HIGH
Network 		moxa awk-3131a_firmware An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted form can trick a … CWE-352
 Origin Validation Error 		CVE-2016-8718 2024-11-21 11:59 2017-04-13 Show GitHub Exploit DB Packet Storm
265642 7.5 HIGH
Adjacent 		moxa awk-3131a_firmware An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. The Change Password functiona… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2016-8716 2024-11-21 11:59 2017-04-13 Show GitHub Exploit DB Packet Storm
265643 8.1 HIGH
Network 		lenovo updates Remote code execution in Lenovo Updates (not Lenovo System Update) allows man-in-the-middle attackers to execute arbitrary code. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8237 2024-11-21 11:59 2017-04-11 Show GitHub Exploit DB Packet Storm
265644 7.8 HIGH
Local 		lenovo customer_care_software_development_kit Privilege escalation in Lenovo Customer Care Software Development Kit (CCSDK) versions earlier than 2.0.16.3 allows local users to execute code with elevated privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8235 2024-11-21 11:59 2017-04-11 Show GitHub Exploit DB Packet Storm
265645 7.5 HIGH
Adjacent 		huawei oceanstor_5600_v3_firmware Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. An attacker may … CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8754 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
265646 6.5 MEDIUM
Network 		huawei anyoffice Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb. CWE-20
 Improper Input Validation  		CVE-2016-8275 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
265647 7.8 HIGH
Local 		huawei hisuite Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code. CWE-284
Improper Access Control 		CVE-2016-8274 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
265648 7.8 HIGH
Local 		huawei hisuite Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can la… CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2016-8273 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
265649 5.3 MEDIUM
Local 		huawei hisuite Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks. CWE-200
Information Exposure 		CVE-2016-8272 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
265650 5.3 MEDIUM
Network 		huawei espace_iad_firmware Huawei eSpace IAD V300R002C01SPC100 and earlier versions have an information leak vulnerability; an attacker can check and download the fault information by accessing a special URL. CWE-200
Information Exposure 		CVE-2016-8271 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm