Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259491	9	危険	マイクロソフト	-	Microsoft Virtual PC の VMM におけるゲスト OS 内で任意のカーネルモードコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1542	2010-03-17 12:18	2009-07-14	Show	GitHub Exploit DB Packet Storm

259492	6.8	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-0921	2010-03-16 11:15	2010-03-3	Show	GitHub Exploit DB Packet Storm

259493	4.3	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0920	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

259494	10	危険	IBM	-	IBM Lotus Domino Web Access の UltraLite 機能における脆弱性	CWE-noinfo 情報不足	CVE-2010-0918	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

259495	4.9	警告	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の _get_argv および _get_compat_argv 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0411	2010-03-16 11:14	2010-02-8	Show	GitHub Exploit DB Packet Storm

259496	10	危険	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の stap-server における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4273	2010-03-16 11:14	2010-01-26	Show	GitHub Exploit DB Packet Storm

259497	6.5	警告	サイバートラスト株式会社 Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0298	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

259498	4.4	警告	サイバートラスト株式会社 Fabrice Bellard レッドハット	-	QEMU の usb_host_handle_control 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0297	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

259499	6.8	警告	サン・マイクロシステムズ freedesktop.org	-	Poppler における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3605	2010-03-15 16:40	2009-11-2	Show	GitHub Exploit DB Packet Storm

259500	4.1	警告	Linux レッドハット	-	Linux kernel の smbfs に関する脆弱性	-	CVE-2006-5871	2010-03-15 16:40	2005-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268721	7.5	HIGH Network	docker	docker	Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or m…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8867	2024-11-21 12:00	2016-10-29	Show	GitHub Exploit DB Packet Storm

268722	6.1	MEDIUM Network	hp	airwave	Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to a reflected cross-site scripting (XSS). The vulnerability is present in the VisualRF component of AirWave. By exploiting …	CWE-79 Cross-site Scripting	CVE-2016-8527	2024-11-21 11:59	2018-08-7	Show	GitHub Exploit DB Packet Storm

268723	8.8	HIGH Network	hp	airwave	Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to an XML external entities (XXE). XXEs are a way to permit XML parsers to access storage that exist on external systems. If…	CWE-611 XXE	CVE-2016-8526	2024-11-21 11:59	2018-08-7	Show	GitHub Exploit DB Packet Storm

268724	9.1	CRITICAL Network	pycsw	pycsw	A SQL injection vulnerability in pycsw all versions before 2.0.2, 1.10.5 and 1.8.6 that leads to read and extract of any data from any table in the pycsw database that the database user has access to…	CWE-89 SQL Injection	CVE-2016-8640	2024-11-21 11:59	2018-08-2	Show	GitHub Exploit DB Packet Storm

268725	8.1	HIGH Network	redhat	keycloak	It was found that the keycloak before 2.3.0 did not implement authentication flow correctly. An attacker could use this flaw to construct a phishing URL, from which he could hijack the user's session…	CWE-287 Improper Authentication	CVE-2016-8609	2024-11-21 11:59	2018-08-2	Show	GitHub Exploit DB Packet Storm

268726	7.8	HIGH Local	jasper_project redhat debian	jasper enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server debian_linux enterprise_linux_server_aus enterprise_linux_server_eus	A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jasper versions before 2.0.0 are affected.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8654	2024-11-21 11:59	2018-08-2	Show	GitHub Exploit DB Packet Storm

268727	3.5	LOW Adjacent	redhat	openshift openshift_container_platform	An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access …	-	CVE-2016-8651	2024-11-21 11:59	2018-08-2	Show	GitHub Exploit DB Packet Storm

268728	5.3	MEDIUM Network	redhat	jboss_a-mq jboss_fuse	It was found that the JMX endpoint of Red Hat JBoss Fuse 6, and Red Hat A-MQ 6 deserializes the credentials passed to it. An attacker could use this flaw to launch a denial of service attack.	-	CVE-2016-8653	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268729	7.2	HIGH Network	redhat	jboss_a-mq jboss_fuse	It was found that the Karaf container used by Red Hat JBoss Fuse 6.x, and Red Hat JBoss A-MQ 6.x, deserializes objects passed to MBeans via JMX operations. An attacker could use this flaw to execute …	-	CVE-2016-8648	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268730	7.8	HIGH Local	nagios	nagios	A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the loca…	-	CVE-2016-8641	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm