Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259371 5 警告 マイクロソフト
VMware
- Microsoft SQL Server のメモリ再配置の際メモリページを初期化しない脆弱性 CWE-200
情報漏えい
CVE-2008-0085 2011-03-4 10:34 2008-07-8 Show GitHub Exploit DB Packet Storm
259372 9 危険 マイクロソフト
VMware
- Microsoft SQL Server の sp_replwritetovarbin 拡張ストアド プロシージャの処理における脆弱性 CWE-119
バッファエラー
CVE-2008-5416 2011-03-4 10:33 2008-12-25 Show GitHub Exploit DB Packet Storm
259373 9.3 危険 Sielco Sistemi - Sielco Sistemi Winlog にバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0517 2011-03-3 16:57 2011-02-7 Show GitHub Exploit DB Packet Storm
259374 9.3 危険 Moxa Inc. - MOXA Device Manager MDM Tool にバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4741 2011-03-3 16:54 2011-02-7 Show GitHub Exploit DB Packet Storm
259375 9.3 危険 SCADA Engine - SCADA Engine BACnet OPC Client におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4740 2011-03-3 16:51 2011-02-7 Show GitHub Exploit DB Packet Storm
259376 5 警告 Majordomo 2 - Majordomo 2 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-0049 2011-03-3 16:47 2011-02-7 Show GitHub Exploit DB Packet Storm
259377 7.6 危険 Automated Solutions, Inc - Automated Solutions Modbus/TCP Master OPC Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4709 2011-03-3 16:32 2011-02-7 Show GitHub Exploit DB Packet Storm
259378 10 危険 シスコシステムズ - Cisco Tandberg E, EX および C Series における root アカウントのデフォルト認証情報の問題 CWE-255
証明書・パスワード管理
CVE-2011-0354 2011-03-3 16:28 2011-02-4 Show GitHub Exploit DB Packet Storm
259379 4.6 警告 サイバートラスト株式会社
VMware
Linux
レッドハット
- Linux kernel の do_gfs2_set_flags 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1641 2011-03-3 13:41 2010-06-1 Show GitHub Exploit DB Packet Storm
259380 4.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット
- Linux kernel の gfs2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-1436 2011-03-3 13:39 2010-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276401 5.9 MEDIUM
Network
squid-cache squid The FwdState::connectedToPeer method in FwdState.cc in Squid before 3.5.14 and 4.0.x before 4.0.6 does not properly handle SSL handshake errors when built with the --with-openssl option, which allows… CWE-20
 Improper Input Validation 
CVE-2016-2390 2024-11-21 11:48 2016-04-20 Show GitHub Exploit DB Packet Storm
276402 5.5 MEDIUM
Local
google android server/content/ContentService.java in the Framework component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a GET_ACCOUNTS permissi… CWE-200
Information Exposure
CVE-2016-2426 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276403 5.5 MEDIUM
Local
google android mail/compose/ComposeActivity.java in AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 supports file:///data attachments, which allows attackers… CWE-200
Information Exposure
CVE-2016-2425 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276404 5.5 MEDIUM
Local
google android server/content/SyncStorageEngine.java in SyncStorageEngine in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mismanages certain authority data, which allo… CWE-20
 Improper Input Validation 
CVE-2016-2424 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276405 5.5 MEDIUM
Local
bouncycastle
google
legion-of-the-bouncy-castle-java-crytography-api
android
The AES-GCM specification in RFC 5084, as used in Android 5.x and 6.x, recommends 12 octets for the aes-ICVlen parameter field, which might make it easier for attackers to defeat a cryptographic prot… CWE-200
Information Exposure
CVE-2016-2427 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276406 6.1 MEDIUM
Physics
google android server/telecom/CallsManager.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider whether a device is provisioned… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-2423 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276407 7.8 HIGH
Local
google android Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not prevent use of a Wi-Fi CA certificate in an unrelated CA role, which allows attackers to … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-2422 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276408 6.1 MEDIUM
Physics
google android Setup Wizard in Android 5.1.x before 5.1.1 and 6.x before 2016-04-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-2421 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276409 7.8 HIGH
Local
google android rootdir/init.rc in Android 4.x before 4.4.4 does not ensure that the /data/tombstones directory exists for the Debuggerd component, which allows attackers to gain privileges via a crafted application… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-2420 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm
276410 9.8 CRITICAL
Network
google android media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process m… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-2419 2024-11-21 11:48 2016-04-18 Show GitHub Exploit DB Packet Storm