NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310901	1.9	LOW	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.0 allows local users to affect availability, related to Outside In Viewer SDK.	NVD-CWE-noinfo	CVE-2010-3597	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310902	6.4	MEDIUM	oracle	secure_backup	Unspecified vulnerability in the mod_ssl component in Oracle Secure Backup 10.3.0.2 allows remote attackers to affect integrity and availability via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3596	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310903	7.8	HIGH	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Document Capture component in Oracle Fusion Middleware 10.1.3.4 and 10.1.3.5 allows remote attackers to affect confidentiality via unknown vectors related to I…	NVD-CWE-noinfo	CVE-2010-3595	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310904	7.5	HIGH	oracle	database_server enterprise_manager_grid_control	Unspecified vulnerability in the Client System Analyzer component in Oracle Database Server 11.1.0.7 and 11.2.0.1 and Enterprise Manager Grid Control 10.2.0.5 allows remote attackers to affect confid…	NVD-CWE-noinfo	CVE-2010-3600	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310905	6.4	MEDIUM	oracle	enterprise_manager_grid_control	Unspecified vulnerability in the Real User Experience Insight component in Oracle Enterprise Manager Grid Control 6.0 allows remote attackers to affect confidentiality and integrity via unknown vecto…	NVD-CWE-noinfo	CVE-2010-3594	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310906	7.5	HIGH	oracle	industry_applications argus_safety	Unspecified vulnerability in the Health Sciences - Oracle Argus Safety component in Oracle Industry Applications 5.0, 5.0.1, 5.0.2, and 5.0.3 allows remote attackers to affect confidentiality, integr…	NVD-CWE-noinfo	CVE-2010-3593	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310907	8.5	HIGH	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Document Capture component in Oracle Fusion Middleware 10.1.3.4 and 10.1.3.5 allows remote attackers to affect integrity and availability via unknown vectors r…	NVD-CWE-noinfo	CVE-2010-3592	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310908	9.3	HIGH	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Document Capture component in Oracle Fusion Middleware 10.1.3.4 and 10.1.3.5 allows remote attackers to affect confidentiality, integrity, and availability via…	NVD-CWE-noinfo	CVE-2010-3591	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310909	4.9	MEDIUM	oracle	database_server	Unspecified vulnerability in the Oracle Spatial component in Oracle Database Server 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality and integrity, related…	NVD-CWE-noinfo	CVE-2010-3590	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310910	4.0	MEDIUM	oracle	e-business_suite	Unspecified vulnerability in the Oracle Application Object Library component in Oracle Applications 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect con…	NVD-CWE-noinfo	CVE-2010-3589	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310911	5.5	MEDIUM	oracle	fusion_middleware	Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 10.1.2.3, 11.1.1.2.0, and 11.1.1.3.0 allows remote authenticated users to affect confidentiality and integrity…	NVD-CWE-noinfo	CVE-2010-3588	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310912	4.3	MEDIUM	oracle	e-business_suite	Unspecified vulnerability in the Oracle Common Applications component in Oracle Applications 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity …	NVD-CWE-noinfo	CVE-2010-3587	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310913	3.6	LOW	sun	sunos	Unspecified vulnerability in Oracle Solaris 9 allows local users to affect confidentiality and integrity via unknown vectors related to XScreenSaver.	NVD-CWE-noinfo	CVE-2010-3586	2024-11-21 10:19	2011-01-20	Show	GitHub Exploit DB Packet Storm

310914	4.0	MEDIUM	mysql oracle	mysql	The Gis_line_string::init_from_wkb function in sql/spatial.cc in MySQL 5.1 before 5.1.51 allows remote authenticated users to cause a denial of service (server crash) by calling the PolyFromWKB funct…	NVD-CWE-Other	CVE-2010-3840	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310915	4.0	MEDIUM	mysql oracle	mysql	MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (infinite loop) via multiple invocations of a (1) prepared statement or (2) stored procedur…	NVD-CWE-Other	CVE-2010-3839	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310916	4.0	MEDIUM	mysql oracle	mysql	MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a query that uses the (1) GREATEST or (2) LEAST func…	NVD-CWE-Other	CVE-2010-3838	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310917	4.0	MEDIUM	mysql oracle	mysql	MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the…	CWE-399 Resource Management Errors	CVE-2010-3837	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310918	4.0	MEDIUM	mysql oracle	mysql	MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (assertion failure and server crash) via vectors related to view prepar…	CWE-399 Resource Management Errors	CVE-2010-3836	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310919	4.0	MEDIUM	mysql oracle	mysql	MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (mysqld server crash) by performing a user-variable assignment in a logical expression that…	CWE-189 Numeric Errors	CVE-2010-3835	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310920	4.0	MEDIUM	mysql oracle	mysql	Unspecified vulnerability in MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via vectors related to "mat…	NVD-CWE-noinfo	CVE-2010-3834	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310921	5.0	MEDIUM	mysql oracle	mysql	MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does not properly propagate type errors, which allows remote attackers to cause a denial of service (server crash) via crafted argumen…	CWE-399 Resource Management Errors	CVE-2010-3833	2024-11-21 10:19	2011-01-15	Show	GitHub Exploit DB Packet Storm

310922	5.8	MEDIUM	wb-i	contents-mall	Contents-Mall before 15 does not properly handle passwords, which allows remote attackers to discover the administrative password, and consequently obtain sensitive information or modify data, via un…	CWE-255 Credentials Management	CVE-2010-3925	2024-11-21 10:19	2011-01-14	Show	GitHub Exploit DB Packet Storm

310923	7.5	HIGH	aimluck	aipo	SQL injection vulnerability in Aimluck Aipo before 5.1.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2010-3924	2024-11-21 10:19	2011-01-14	Show	GitHub Exploit DB Packet Storm

310924	10.0	HIGH	novell	suse_linux	The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.	CWE-255 Credentials Management	CVE-2010-3912	2024-11-21 10:19	2011-01-13	Show	GitHub Exploit DB Packet Storm

310925	4.3	MEDIUM	wb-i	sgx-sp_final sgx-sp_final_ne	Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi in SGX-SP Final before 11.00 and SGX-SP Final NE before 11.00 allow remote attackers to inject arbitrary web script or HTML via unspeci…	CWE-79 Cross-site Scripting	CVE-2010-3926	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310926	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet when a LOAD DATA INFILE request generates SQL errors, which allows remote authenticated users to cause a denial of service (mysq…	NVD-CWE-Other	CVE-2010-3683	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310927	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY …	NVD-CWE-Other	CVE-2010-3682	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310928	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using the HANDLER interface and performing "alternate reads…	NVD-CWE-Other	CVE-2010-3681	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310929	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by creating temporary tables with nullable columns while using InnoDB, which trigge…	NVD-CWE-Other	CVE-2010-3680	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310930	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via certain arguments to the BINLOG command, which triggers an access of uninitiali…	CWE-399 Resource Management Errors	CVE-2010-3679	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310931	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (crash) via (1) IN or (2) CASE operations with NULL arguments that are explicitly specified or indirectly…	CWE-399 Resource Management Errors	CVE-2010-3678	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310932	4.0	MEDIUM	mysql oracle	mysql	Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) via a join query that uses a table with a unique SET column.	CWE-399 Resource Management Errors	CVE-2010-3677	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310933	4.0	MEDIUM	mysql oracle	mysql	storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (assertion failure) by modifying the (1) innodb_file_forma…	NVD-CWE-Other	CVE-2010-3676	2024-11-21 10:19	2011-01-12	Show	GitHub Exploit DB Packet Storm

310934	7.2	HIGH	linux opensuse suse	linux_kernel opensuse linux_enterprise_high_availability_extension linux_enterprise_real_time	Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec s…	CWE-190 Integer Overflow or Wraparound	CVE-2010-3865	2024-11-21 10:19	2011-01-11	Show	GitHub Exploit DB Packet Storm

310935	7.2	HIGH	gnu	glibc	ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs)…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-3856	2024-11-21 10:19	2011-01-8	Show	GitHub Exploit DB Packet Storm

310936	6.9	MEDIUM	gnu	glibc	elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the LD_AUDIT environment variable, which al…	CWE-59 Link Following	CVE-2010-3847	2024-11-21 10:19	2011-01-8	Show	GitHub Exploit DB Packet Storm

310937	9.3	HIGH	videolan	vlc_media_player	Multiple integer overflows in real.c in the Real demuxer plugin in VideoLAN VLC Media Player before 1.1.6 allow remote attackers to cause a denial of service (application crash) or possibly execute a…	CWE-189 Numeric Errors	CVE-2010-3907	2024-11-21 10:19	2011-01-4	Show	GitHub Exploit DB Packet Storm

310938	1.9	LOW	linux debian	linux_kernel debian_linux	The get_name function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from ker…	CWE-909 Missing Initialization of Resource	CVE-2010-3877	2024-11-21 10:19	2011-01-4	Show	GitHub Exploit DB Packet Storm

310939	1.9	LOW	linux suse opensuse debian	linux_kernel linux_enterprise_server opensuse linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_real_time_extension debian_linux	net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel s…	CWE-909 Missing Initialization of Resource	CVE-2010-3876	2024-11-21 10:19	2011-01-4	Show	GitHub Exploit DB Packet Storm

310940	2.1	LOW	linux debian	linux_kernel debian_linux	The ax25_getname function in net/ax25/af_ax25.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information fro…	CWE-200 Information Exposure	CVE-2010-3875	2024-11-21 10:19	2011-01-4	Show	GitHub Exploit DB Packet Storm

310941	5.0	MEDIUM	linux suse opensuse debian	linux_kernel linux_enterprise_server opensuse debian_linux	The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3873	2024-11-21 10:19	2011-01-4	Show	GitHub Exploit DB Packet Storm

310942	6.9	MEDIUM	mitsu_hiro_hi_rose	attachecase	Untrusted search path vulnerability in AttacheCase before 2.70 allows local users to gain privileges via a Trojan horse executable file in the current working directory.	NVD-CWE-Other	CVE-2010-3923	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310943	4.3	MEDIUM	redhat	jboss_enterprise_application_platform	Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack th…	CWE-352 Origin Validation Error	CVE-2010-3878	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310944	2.6	LOW	redhat	jboss_remoting jboss_enterprise_application_platform jboss_enterprise_web_platform	The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run method in JBoss Remoting 2.2.x before 2.2.3.SP4 and 2.5.x before 2.5.3.SP2 in Red Hat JBoss Enterprise …	CWE-20 Improper Input Validation	CVE-2010-3862	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310945	7.5	HIGH	redhat	jboss_enterprise_application_platform jboss_enterprise_soa_platform	The serialization implementation in JBoss Drools in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 and JBoss Enterprise SOA Platform 4.2 and 4.3 supports…	CWE-20 Improper Input Validation	CVE-2010-3708	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310946	2.1	LOW	linux suse debian canonical	linux_kernel linux_enterprise_server linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_real_time_extension debian_linux ubuntu_linux	The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_ADMIN capability, which allows local users to bypass intended access restrictions …	NVD-CWE-noinfo	CVE-2010-3850	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310947	4.7	MEDIUM	linux suse debian canonical	linux_kernel linux_enterprise_server linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_real_time_extension debian_linux ubuntu_linux	The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to cause a denial of service (NULL pointer derefere…	CWE-476 NULL Pointer Dereference	CVE-2010-3849	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310948	6.9	MEDIUM	linux suse debian canonical	linux_kernel linux_enterprise_server linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_real_time_extension debian_linux ubuntu_linux	Stack-based buffer overflow in the econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to gain privileges b…	CWE-787 Out-of-bounds Write	CVE-2010-3848	2024-11-21 10:19	2010-12-31	Show	GitHub Exploit DB Packet Storm

310949	4.0	MEDIUM	linux fedoraproject suse opensuse debian	linux_kernel fedora linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_real_time_extension debian_linux	Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.36.2 on 64-bit p…	CWE-787 Out-of-bounds Write	CVE-2010-3874	2024-11-21 10:19	2010-12-30	Show	GitHub Exploit DB Packet Storm

310950	6.9	MEDIUM	linux debian	linux_kernel debian_linux	Multiple integer signedness errors in the TIPC implementation in the Linux kernel before 2.6.36.2 allow local users to gain privileges via a crafted sendmsg call that triggers a heap-based buffer ove…	CWE-787 Out-of-bounds Write	CVE-2010-3859	2024-11-21 10:19	2010-12-30	Show	GitHub Exploit DB Packet Storm