Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260191 4 警告 オラクル - Oracle Solaris および OpenSolaris における InfiniBand の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3516 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
260192 4 警告 オラクル - Oracle Solaris および OpenSolaris の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3515 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
260193 4.3 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3514 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
260194 4.9 警告 オラクル - Oracle Solaris および OpenSolaris における Kernel/X86 の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3517 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
260195 5.8 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-3545 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
260196 6.3 警告 オラクル - Oracle Solaris における su の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3503 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
260197 9.3 危険 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット
- FreeType 2 における CFF フォントの処理に脆弱性 CWE-119
バッファエラー
CVE-2010-1797 2010-11-2 15:24 2010-08-9 Show GitHub Exploit DB Packet Storm
260198 6.6 警告 オラクル - Oracle Solaris における Live Upgrade の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3507 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
260199 10 危険 オラクル - Oracle Solaris における Scheduler の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2010-3509 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
260200 4.3 警告 オラクル - Oracle Fusion Middleware の Forms コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-2396 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305401 - openstack compute
essex
diablo
The (1) EC2 and (2) OS APIs in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) do not properly check the protocol when security groups are created and the network protoc… CWE-20
 Improper Input Validation 
CVE-2012-2654 2024-11-21 10:39 2012-06-22 Show GitHub Exploit DB Packet Storm
305402 - w1.fi hostapd hostapd 0.7.3, and possibly other versions before 1.0, uses 0644 permissions for /etc/hostapd/hostapd.conf, which might allow local users to obtain sensitive information such as credentials. CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-2389 2024-11-21 10:39 2012-06-22 Show GitHub Exploit DB Packet Storm
305403 - cisco anyconnect_secure_mobility_client A certain Java applet in the VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR7 on 64-bit Linux platforms does not properly restrict … CWE-20
 Improper Input Validation 
CVE-2012-2496 2024-11-21 10:39 2012-06-21 Show GitHub Exploit DB Packet Storm
305404 - cisco secure_desktop
anyconnect_secure_mobility_client
The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the… CWE-20
 Improper Input Validation 
CVE-2012-2495 2024-11-21 10:39 2012-06-21 Show GitHub Exploit DB Packet Storm
305405 - cisco anyconnect_secure_mobility_client The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 and 3.x before 3.0 MR8 does not compare the timestamp of offered software to t… CWE-20
 Improper Input Validation 
CVE-2012-2494 2024-11-21 10:39 2012-06-21 Show GitHub Exploit DB Packet Storm
305406 - cisco anyconnect_secure_mobility_client The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linu… CWE-20
 Improper Input Validation 
CVE-2012-2493 2024-11-21 10:39 2012-06-21 Show GitHub Exploit DB Packet Storm
305407 - checkpoint remote_access_clients
endpoint_security
endpoint_connect
endpoint_security_vpn
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint … NVD-CWE-Other
CVE-2012-2753 2024-11-21 10:39 2012-06-20 Show GitHub Exploit DB Packet Storm
305408 - wap2 smallpict Cross-site scripting (XSS) vulnerability in SmallPICT.cgi in SmallPICT before 2.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2012-2638 2024-11-21 10:39 2012-06-20 Show GitHub Exploit DB Packet Storm
305409 - kent-web web_patio Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie. CWE-79
Cross-site Scripting
CVE-2012-2637 2024-11-21 10:39 2012-06-20 Show GitHub Exploit DB Packet Storm
305410 - kent-web web_patio Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2012-2636 2024-11-21 10:39 2012-06-20 Show GitHub Exploit DB Packet Storm