Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4271 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34540 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4272 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-34541 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4273 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-34542 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4274 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-34546 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4275 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2026-34547 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4276 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおける数値型間の変換の誤りに関する脆弱性 CWE-681
数値型間の変換の誤り 		CVE-2026-34548 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4277 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2026-34549 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4278 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおける数値型間の変換の誤りに関する脆弱性 CWE-681
数値型間の変換の誤り 		CVE-2026-34550 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4279 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-34551 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
4280 5.5 警告
Local 		International Color Consortium (ICC) iccDEV International Color Consortium (ICC)のiccDEVにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-34552 2026-04-21 10:47 2026-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349461 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which al… CWE-189
Numeric Errors 		CVE-2003-1580 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
349462 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conjunction with a crafte… CWE-79
Cross-site Scripting 		CVE-2003-1581 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
349463 - tor tor Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymi… CWE-200
Information Exposure 		CVE-2010-0383 2010-02-5 16:13 2010-01-26 Show GitHub Exploit DB Packet Storm
349464 - ircd-ratbox ircd-ratbox cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command. NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
349465 - ircd-ratbox ircd-ratbox Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference' NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
349466 - xerox workcentre_5632
workcentre_5638
workcentre_5645
workcentre_5655
workcentre_5665
workcentre_5675
workcentre_5687 		Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to (1) access mailboxes via unkno… CWE-200
Information Exposure 		CVE-2010-0548 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
349467 - ircd-hybrid
ircd-ratbox
oftc 		ircd-hybrid
ircd-ratbox
oftc-hybrid 		Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allo… CWE-189
Numeric Errors 		CVE-2009-4016 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
349468 - comtrend ct-507it_adsl_router Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter. CWE-79
Cross-site Scripting 		CVE-2010-0470 2010-02-3 14:00 2010-02-3 Show GitHub Exploit DB Packet Storm
349469 - viewvc viewvc query.py in the query interface in ViewVC before 1.1.3 does not reject configurations that specify an unsupported authorizer for a root, which might allow remote attackers to bypass intended access r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0005 2010-02-2 14:00 2010-01-30 Show GitHub Exploit DB Packet Storm
349470 - mozilla seamonkey
thunderbird 		Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote a… CWE-200
Information Exposure 		CVE-2009-4629 2010-02-2 14:00 2010-01-30 Show GitHub Exploit DB Packet Storm