NVD Vulnerability Information Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314101 6.4 MEDIUM
microsoft windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to bypass intended IPv4 source-address restrictions via a mismatched I… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0812 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314102 4.7 MEDIUM
microsoft windows_server_2008
windows_vista 		The kernel in Microsoft Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2, does not properly handle unspecified exceptions, which allows local users to cause a denial of service … NVD-CWE-noinfo
CVE-2010-0810 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314103 4.7 MEDIUM
microsoft windows_7
windows_server_2008
windows_vista 		The kernel in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly translate a registry key's virtual path to its real path, which allows… NVD-CWE-Other
CVE-2010-0481 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314104 9.3 HIGH
microsoft outlook_express
windows_live_mail
windows_mail 		Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and… CWE-189
Numeric Errors 		CVE-2010-0816 2023-12-8 03:38 2010-05-12 Show GitHub Exploit DB Packet Storm
314105 9.3 HIGH
microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The Authenticode Signature verification functionality in cabview.dll in Cabinet File Viewer Shell Extension 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 200… CWE-20
 Improper Input Validation  		CVE-2010-0487 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314106 9.3 HIGH
microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The WinVerifyTrust function in Authenticode Signature Verification 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, … CWE-20
 Improper Input Validation  		CVE-2010-0486 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314107 9.3 HIGH
microsoft windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow rem… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0480 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314108 10.0 HIGH
microsoft windows_7
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The SMB client in Microsoft Windows Server 2003 SP2, Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code… CWE-399
 Resource Management Errors 		CVE-2010-0476 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314109 10.0 HIGH
microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The SMB client in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly… CWE-399
 Resource Management Errors 		CVE-2010-0269 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314110 4.7 MEDIUM
microsoft windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 does not properly validate a registry-key argument to an unspecified … CWE-20
 Improper Input Validation  		CVE-2010-0234 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
314111 9.3 HIGH
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista 		Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTM… CWE-94
Code Injection 		CVE-2010-0807 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314112 4.3 MEDIUM
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_7
windows_2000 		Cross-domain vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via … CWE-200
Information Exposure 		CVE-2010-0494 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314113 9.3 HIGH
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_7 		Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0490 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314114 9.3 HIGH
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condit… CWE-362
Race Condition 		CVE-2010-0489 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314115 4.3 MEDIUM
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive info… CWE-200
Information Exposure 		CVE-2010-0488 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314116 9.3 HIGH
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initia… CWE-94
Code Injection 		CVE-2010-0267 2023-12-8 03:38 2010-04-1 Show GitHub Exploit DB Packet Storm
314117 9.3 HIGH
microsoft internet_explorer
windows_2003_server
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving acc… CWE-399
 Resource Management Errors 		CVE-2010-0806 2023-12-8 03:38 2010-03-11 Show GitHub Exploit DB Packet Storm
314118 9.3 HIGH
microsoft windows_movie_maker
windows_xp
windows_vista
producer 		Buffer overflow in Microsoft Windows Movie Maker 2.1, 2.6, and 6.0, and Microsoft Producer 2003, allows remote attackers to execute arbitrary code via a crafted project (.MSWMM) file, aka "Movie Make… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0265 2023-12-8 03:38 2010-03-11 Show GitHub Exploit DB Packet Storm
314119 9.3 HIGH
microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		The Microsoft Data Analyzer ActiveX control (aka the Office Excel ActiveX control for Data Analysis) in max3activex.dll in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2,… CWE-94
Code Injection 		CVE-2010-0252 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314120 9.3 HIGH
microsoft windows_xp
windows_server_2008
windows_7
windows_vista 		Heap-based buffer overflow in DirectShow in Microsoft DirectX, as used in the AVI Filter on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2, and in Quartz on Windows 2000 SP4, W… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0250 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314121 7.8 HIGH
microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to cause a denial of service (system hang) via crafted packets with malfor… CWE-399
 Resource Management Errors 		CVE-2010-0242 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314122 10.0 HIGH
microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Route Information packe… CWE-94
Code Injection 		CVE-2010-0241 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314123 10.0 HIGH
microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when a custom network driver is used, does not properly handle local fragmentation of Encapsulati… CWE-94
Code Injection 		CVE-2010-0240 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314124 10.0 HIGH
microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Router Advertisement pa… CWE-94
Code Injection 		CVE-2010-0239 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314125 7.8 HIGH
microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-20
 Improper Input Validation  		CVE-2010-0022 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314126 7.1 HIGH
microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		Multiple race conditions in the SMB implementation in the Server service in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allow remote attackers to … CWE-362
Race Condition 		CVE-2010-0021 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314127 10.0 HIGH
microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-264
CWE-310
Permissions, Privileges, and Access Controls
Cryptographic Issues 		CVE-2010-0231 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314128 9.0 HIGH
microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-94
CWE-20
Code Injection
 Improper Input Validation  		CVE-2010-0020 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314129 9.3 HIGH
microsoft windows_server_2008
windows_vista
windows_7 		Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB c… CWE-362
Race Condition 		CVE-2010-0017 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314130 4.3 MEDIUM
microsoft internet_explorer Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0255 2023-12-8 03:38 2010-02-5 Show GitHub Exploit DB Packet Storm
314131 9.3 HIGH
microsoft internet_explorer
windows_server_2003
windows_xp
windows_server_2008
windows_vista
windows_2000 		Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and… NVD-CWE-Other
CVE-2010-0555 2023-12-8 03:38 2010-02-5 Show GitHub Exploit DB Packet Storm
314132 9.3 HIGH
microsoft internet_explorer Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i… CWE-94
Code Injection 		CVE-2010-0246 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314133 9.3 HIGH
microsoft internet_explorer Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i… CWE-94
Code Injection 		CVE-2010-0245 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314134 9.3 HIGH
microsoft internet_explorer Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini… CWE-94
Code Injection 		CVE-2010-0244 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314135 9.3 HIGH
microsoft internet_explorer
windows_7
windows_server_2003
windows_server_2008
windows_vista
windows_xp
windows_2000
windows_2003_server 		The URL validation functionality in Microsoft Internet Explorer 5.01, 6, 6 SP1, 7 and 8, and the ShellExecute API function in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, does not properly … CWE-94
Code Injection 		CVE-2010-0027 2023-12-8 03:38 2010-01-23 Show GitHub Exploit DB Packet Storm
314136 - -
- - Rejected reason: CVE request originates from private repository - CVE-2023-49787 2023-12-8 03:15 2023-12-8 Show GitHub Exploit DB Packet Storm
314137 - -
- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it's a duplicate of CVE-2023-39169. - CVE-2023-39170 2023-12-8 00:15 2023-12-8 Show GitHub Exploit DB Packet Storm
314138 - -
- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it's a duplicate of CVE-2023-39167. - CVE-2023-39168 2023-12-7 23:15 2023-12-7 Show GitHub Exploit DB Packet Storm
314139 9.8 CRITICAL
Network 		- - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2022-28958 2023-11-30 06:15 2022-05-18 Show GitHub Exploit DB Packet Storm
314140 7.2 HIGH
acme_labs thttpd Multiple buffer overflows in htpasswd, as used in Acme thttpd 2.25b, and possibly other products such as Apache, might allow local users to gain privileges via (1) a long command line argument and (2… NVD-CWE-Other
CVE-2006-1078 2023-11-29 02:15 2006-03-9 Show GitHub Exploit DB Packet Storm
314141 7.2 HIGH
acme_labs thttpd htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privileges via shell metacharacters in a command line argument, which is used in a c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-1079 2023-11-29 02:15 2006-03-9 Show GitHub Exploit DB Packet Storm
314142 - -
- - Rejected reason: This CVE ID was unused by the CNA. - CVE-2024-0070 2023-11-28 09:15 2023-11-28 Show GitHub Exploit DB Packet Storm
314143 - -
- - Rejected reason: This CVE ID was unused by the CNA. - CVE-2024-0069 2023-11-28 09:15 2023-11-28 Show GitHub Exploit DB Packet Storm
314144 - -
- - Rejected reason: ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-6136. Reason: This record is a reservation duplicate of CVE-20nn-nnnn. Notes: All CVE users should reference CVE-2023-61… - CVE-2023-5773 2023-11-28 07:15 2023-11-28 Show GitHub Exploit DB Packet Storm
314145 - -
- - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-38914 2023-11-24 22:15 2023-11-24 Show GitHub Exploit DB Packet Storm
314146 7.5 HIGH
Network 		- - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-45960 2023-11-23 01:15 2023-10-26 Show GitHub Exploit DB Packet Storm
314147 - -
- - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-46377 2023-11-22 01:15 2023-11-22 Show GitHub Exploit DB Packet Storm
314148 6.5 MEDIUM
Network 		- - Rejected reason: Non Security Issue. See the binutils security policy for more details, https://sourceware.org/cgit/binutils-gdb/tree/binutils/SECURITY.txt - CVE-2021-3487 2023-11-20 14:15 2021-04-15 Show GitHub Exploit DB Packet Storm
314149 - -
- - Rejected reason: Confirm reference is not public. - CVE-2023-47638 2023-11-16 06:15 2023-11-16 Show GitHub Exploit DB Packet Storm
314150 - -
- - Rejected reason: appears to be a duplicate of CVE-2023-40206 - CVE-2023-6079 2023-11-16 02:15 2023-11-16 Show GitHub Exploit DB Packet Storm