NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311401	4.0	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise CRM - Common Components component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #41, 9.0 Bundle #28, and 9.1 Bundle #4 allows remote authe…	NVD-CWE-noinfo	CVE-2010-3528	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311402	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise FMS - AM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users …	NVD-CWE-noinfo	CVE-2010-3527	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311403	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise SCM - PO component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users …	NVD-CWE-noinfo	CVE-2010-3526	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311404	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the (1) PeopleSoft Enterprise FMS, (2) SCM, (3) EPM, (4) CRM, and (5) Campus Solutions components in Oracle PeopleSoft and JDEdwards Suite 8.9, 9.0, and 9.1 allows remote…	NVD-CWE-noinfo	CVE-2010-3525	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311405	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise SCM - Strategic Sourcing component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote auth…	NVD-CWE-noinfo	CVE-2010-3524	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311406	5.0	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.28 and 8.50.12 allows remote attackers to affect integrity via unknown vecto…	NVD-CWE-noinfo	CVE-2010-3523	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311407	4.0	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.28 and 8.50.12 allows remote authenticated users to affect confidentiality v…	NVD-CWE-noinfo	CVE-2010-3522	2024-11-21 10:18	2010-10-15	Show	GitHub Exploit DB Packet Storm

311408	5.8	MEDIUM	gnome	epiphany	Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, unconditionally displays a closed-lock icon for any URL beginning with the https: substring, without any warning to the user, which allows ma…	NVD-CWE-Other	CVE-2010-3312	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311409	5.0	MEDIUM	gnu	glibc	Certain run-time memory protection mechanisms in the GNU C Library (aka glibc or libc6) print argv[0] and backtrace information, which might allow context-dependent attackers to obtain sensitive info…	CWE-200 Information Exposure	CVE-2010-3192	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311410	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise HCM ePay component in Oracle PeopleSoft and JDEdwards Suite 9.0 to Payroll Update 10-C and 9.1 to Payroll Update 10-C allows remote authenticate…	NVD-CWE-noinfo	CVE-2010-3521	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311411	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise HCM - GP France component in Oracle PeopleSoft and JDEdwards Suite 8.81 SP1 Bundle #12, 8.9 GP Update 2010-E, 9.0 GP Update 2010-E, and 9.1 GP U…	NVD-CWE-noinfo	CVE-2010-3520	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311412	4.0	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.28 and 8.50.12 allows remote authenticated users to affect integrity via unk…	NVD-CWE-noinfo	CVE-2010-3519	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311413	5.5	MEDIUM	oracle	peoplesoft_and_jdedwards_product_suite	Unspecified vulnerability in the PeopleSoft Enterprise HCM GP - Japan component in Oracle PeopleSoft and JDEdwards Suite 8.81 SP1 Bundle #13, 8.9 GP Update 2010-E, 9.0 GP Update 2010-E, and 9.1 GP Up…	NVD-CWE-noinfo	CVE-2010-3518	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311414	4.9	MEDIUM	oracle	opensolaris solaris	Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability, related to Kernel/X86.	NVD-CWE-noinfo	CVE-2010-3517	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311415	4.0	MEDIUM	oracle	opensolaris solaris	Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability via unknown vectors related to InfiniBand.	NVD-CWE-noinfo	CVE-2010-3516	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311416	4.0	MEDIUM	oracle	solaris opensolaris	Unspecified vulnerability in the Solaris component in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to Kernel/Disk Driver.	NVD-CWE-noinfo	CVE-2010-3515	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311417	4.3	MEDIUM	oracle	sun_products_suite	Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vect…	NVD-CWE-noinfo	CVE-2010-3514	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311418	2.4	LOW	oracle	solaris opensolaris	Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers.	NVD-CWE-noinfo	CVE-2010-3513	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311419	3.5	LOW	oracle	sun_products_suite	Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0u8 allows remote authenticated users to affect confidentiality, relat…	NVD-CWE-noinfo	CVE-2010-3512	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311420	2.6	LOW	oracle	opensolaris	Unspecified vulnerability in Oracle OpenSolaris allows local users to affect integrity and availability via unknown vectors related to Tooltalk.	NVD-CWE-noinfo	CVE-2010-3511	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311421	10.0	HIGH	oracle	solaris	Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scheduler.	NVD-CWE-noinfo	CVE-2010-3509	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311422	3.2	LOW	oracle	solaris	Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Zones.	NVD-CWE-noinfo	CVE-2010-3508	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311423	6.6	MEDIUM	oracle	solaris	Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Live Upgrade.	NVD-CWE-noinfo	CVE-2010-3507	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311424	3.0	LOW	oracle	sun_products_suite	Unspecified vulnerability in the Oracle Explorer (Sun Explorer) component in Oracle Sun Products Suite 6.4 allows local users to affect confidentiality and integrity via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3506	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311425	4.3	MEDIUM	oracle	e-business_suite	Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.2 allows remote attackers to affect integrity via unknown vector…	NVD-CWE-noinfo	CVE-2010-3504	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311426	6.3	MEDIUM	oracle	opensolaris solaris	Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect confidentiality and integrity via unknown vectors related to su.	NVD-CWE-noinfo	CVE-2010-3503	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311427	4.0	MEDIUM	oracle	siebel_suite	Unspecified vulnerability in the Siebel Core component in Oracle Siebel Suite 7.7.2.12, 7.8.2.14, 8.0.0.10, and 8.1.1.3 allows remote authenticated users to affect confidentiality via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3502	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311428	5.0	MEDIUM	oracle	fusion_middleware	Unspecified vulnerability in the OID component in Oracle Fusion Middleware 10.1.2.3, 10.1.4.3, and 11.1.1.2.0 allows remote attackers to affect availability via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3501	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311429	6.0	MEDIUM	oracle	siebel_suite	Unspecified vulnerability in the Siebel Core - Highly Interactive Client component in Oracle Siebel Suite 7.7.2.12, 7.8.2.14, 8.0.0.10, and 8.1.1.3 allows remote authenticated users to affect confide…	NVD-CWE-noinfo	CVE-2010-3500	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311430	9.3	HIGH	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory in certain circumstances involving use of Microsoft Word to read Word documents, which allows remote attackers to ex…	CWE-94 Code Injection	CVE-2010-3331	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311431	4.3	MEDIUM	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 8 does not properly restrict script access to content from a different (1) domain or (2) zone, which allows remote attackers to obtain sensitive information via …	CWE-200 Information Exposure	CVE-2010-3330	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311432	9.3	HIGH	microsoft	internet_explorer	mshtmled.dll in Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code via a crafted Microsoft Office document that causes the HtmlDlgHelper class destructor to access …	CWE-94 Code Injection	CVE-2010-3329	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311433	8.8	HIGH Network	microsoft	internet_explorer	Use-after-free vulnerability in the CAttrArray::PrivateFind function in mshtml.dll in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code by setting an unspecifi…	CWE-416 Use After Free	CVE-2010-3328	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311434	4.3	MEDIUM	microsoft	internet_explorer	The implementation of HTML content creation in Microsoft Internet Explorer 6 through 8 does not remove the Anchor element during pasting and editing, which might allow remote attackers to obtain sens…	CWE-200 Information Exposure	CVE-2010-3327	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311435	9.3	HIGH	microsoft	internet_explorer	Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i…	CWE-94 Code Injection	CVE-2010-3326	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311436	4.3	MEDIUM	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 8 does not properly handle unspecified special characters in Cascading Style Sheets (CSS) documents, which allows remote attackers to obtain sensitive informatio…	CWE-200 Information Exposure	CVE-2010-3325	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311437	4.3	MEDIUM	microsoft	sharepoint_services sharepoint_server internet_explorer	Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoin…	CWE-79 Cross-site Scripting	CVE-2010-3243	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311438	9.3	HIGH	microsoft	open_xml_file_format_converter office excel	Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code…	CWE-20 Improper Input Validation	CVE-2010-3242	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311439	9.3	HIGH	microsoft	open_xml_file_format_converter office excel	Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary file-format information, which allows remote attackers to execute ar…	CWE-20 Improper Input Validation	CVE-2010-3241	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311440	9.3	HIGH	microsoft	excel excel_viewer office_compatibility_pack	Microsoft Excel 2002 SP3 and 2007 SP2; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 do not properly validate record information, which allows …	CWE-20 Improper Input Validation	CVE-2010-3240	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311441	9.3	HIGH	microsoft	excel	Microsoft Excel 2002 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Extra Out of Boundary Record Parsing…	CWE-20 Improper Input Validation	CVE-2010-3239	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311442	9.3	HIGH	microsoft	office excel	Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which allows remote attackers to execute arbitrary code via a crafted Excel …	CWE-20 Improper Input Validation	CVE-2010-3238	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311443	9.3	HIGH	microsoft	office excel	Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Merge Cell Rec…	CWE-20 Improper Input Validation	CVE-2010-3237	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311444	9.3	HIGH	microsoft	open_xml_file_format_converter office excel	Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute a…	CWE-20 Improper Input Validation	CVE-2010-3236	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311445	9.3	HIGH	microsoft	excel	Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Biff Record Vulnerability."	CWE-20 Improper Input Validation	CVE-2010-3235	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311446	9.3	HIGH	microsoft	excel	Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code via a crafted Excel document, aka "Formula Substream Memory Corruption…	CWE-20 Improper Input Validation	CVE-2010-3234	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311447	9.3	HIGH	microsoft	excel	Microsoft Excel 2002 SP3 and 2003 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code via a crafted .wk3 (aka Lotus 1-2-3 workbook) file, aka "L…	CWE-20 Improper Input Validation	CVE-2010-3233	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311448	9.3	HIGH	microsoft	open_xml_file_format_converter office excel_viewer office_compatibility_pack excel	Microsoft Excel 2003 SP3 and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File …	CWE-20 Improper Input Validation	CVE-2010-3232	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311449	9.3	HIGH	microsoft	open_xml_file_format_converter office excel	Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record information, which allows remote attackers to execute arbitrary code…	CWE-20 Improper Input Validation	CVE-2010-3231	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm

311450	9.3	HIGH	microsoft	excel	Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted record information, aka "Excel Record Parsing Integer Overflow Vulner…	CWE-189 Numeric Errors	CVE-2010-3230	2024-11-21 10:18	2010-10-14	Show	GitHub Exploit DB Packet Storm