Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258241	6.4	警告	VMware	-	VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性	CWE-noinfo 情報不足	CVE-2009-0908	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

258242	2.1	注意	VMware	-	複数の VMware 製品の VI Client におけるパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0518	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

258243	4.4	警告	KVM レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0419	2010-03-23 14:09	2010-03-1	Show	GitHub Exploit DB Packet Storm

258244	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0263	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

258245	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0262	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

258246	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0261	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

258247	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0260	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

258248	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0258	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

258249	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0264	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

258250	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0257	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253401	8.8	HIGH Network	git opensuse debian canonical fedoraproject	git-shell leap debian_linux ubuntu_linux fedora	git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.…	NVD-CWE-noinfo	CVE-2017-8386	2024-11-21 12:33	2017-06-2	Show	GitHub Exploit DB Packet Storm

253402	6.5	MEDIUM Network	eucalyptus	eucalyptus	Atlassian Eucalyptus before 4.4.1, when in EDGE mode, allows remote authenticated users with certain privileges to cause a denial of service (E2 service outage) via unspecified vectors.	NVD-CWE-noinfo	CVE-2017-7999	2024-11-21 12:33	2017-06-2	Show	GitHub Exploit DB Packet Storm

253403	8.8	HIGH Network	pivotx	pivotx	PivotX 2.3.11 allows remote authenticated users to execute arbitrary PHP code via vectors involving an upload of a .htaccess file.	CWE-94 Code Injection	CVE-2017-8402	2024-11-21 12:33	2017-05-31	Show	GitHub Exploit DB Packet Storm

253404	5.5	MEDIUM Local	kodi debian	kodi debian_linux	Directory Traversal in Zip Extraction built-in function in Kodi 17.1 and earlier allows arbitrary file write on disk via a Zip file as subtitles.	CWE-22 Path Traversal	CVE-2017-8314	2024-11-21 12:33	2017-05-24	Show	GitHub Exploit DB Packet Storm

253405	5.5	MEDIUM Local	videolan	vlc_media_player	Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via …	CWE-125 Out-of-bounds Read	CVE-2017-8313	2024-11-21 12:33	2017-05-24	Show	GitHub Exploit DB Packet Storm

253406	5.5	MEDIUM Local	videolan debian	vlc_media_player debian_linux	Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file.	CWE-125 Out-of-bounds Read	CVE-2017-8312	2024-11-21 12:33	2017-05-24	Show	GitHub Exploit DB Packet Storm

253407	7.8	HIGH Local	videolan	vlc_media_player	Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles fil…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8311	2024-11-21 12:33	2017-05-24	Show	GitHub Exploit DB Packet Storm

253408	5.5	MEDIUM Local	videolan	vlc_media_player	Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (…	CWE-125 Out-of-bounds Read	CVE-2017-8310	2024-11-21 12:33	2017-05-24	Show	GitHub Exploit DB Packet Storm

253409	6.5	MEDIUM Local	qemu debian redhat	qemu debian_linux openstack	Memory leak in the keyboard input event handlers support in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption) by rapidly generati…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-8379	2024-11-21 12:33	2017-05-23	Show	GitHub Exploit DB Packet Storm

253410	7.5	HIGH Network	qemu debian redhat	qemu debian_linux openstack	Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a denial of service (memory consumption) by repeatedly starting and stopping audio capture.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-8309	2024-11-21 12:33	2017-05-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed