Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 3, 2024, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200661 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
200662 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
200663 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
200664 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
200665 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
200666 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 3, 2024, 12:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257551 - cisco intrusion_prevention_system The sensor in Cisco Intrusion Prevention System (IPS) 7.0 and 7.1 allows remote attackers to cause a denial of service (file-handle exhaustion and mainApp hang) by making authentication attempts that… CWE-287
Improper Authentication 		CVE-2011-4022 2012-05-11 13:00 2012-05-3 Show GitHub Exploit DB Packet Storm
257552 - cisco ios
ios_xe 		Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates in use, allows remote authenticated users to cause a denial of service (segmentation fault and device c… CWE-20
 Improper Input Validation  		CVE-2011-4231 2012-05-11 13:00 2012-05-3 Show GitHub Exploit DB Packet Storm
257553 - cisco unified_communications_manager The voice-sipstack component in Cisco Unified Communications Manager (CUCM) 8.5 allows remote attackers to cause a denial of service (core dump) via vectors involving SIP messages that arrive after a… NVD-CWE-noinfo
CVE-2012-0376 2012-05-10 13:00 2012-05-4 Show GitHub Exploit DB Packet Storm
257554 - xnview xnview Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685. CWE-189
Numeric Errors 		CVE-2012-0684 2012-05-10 13:00 2012-05-9 Show GitHub Exploit DB Packet Storm
257555 - xnview xnview Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684. CWE-189
Numeric Errors 		CVE-2012-0685 2012-05-10 13:00 2012-05-9 Show GitHub Exploit DB Packet Storm
257556 - apple iphone_os Safari in Apple iOS before 5.1.1 allows remote attackers to spoof the location bar's URL via a crafted web site. CWE-20
 Improper Input Validation  		CVE-2012-0674 2012-05-8 19:25 2012-05-8 Show GitHub Exploit DB Packet Storm
257557 - oracle peoplesoft_enterprise_hrms Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Update 2011-B and 9.1 Update 2011-B allows remote authenticated users to affect confidentiality and integrity via unknown vectors re… NVD-CWE-noinfo
CVE-2011-0861 2012-05-1 13:00 2011-04-20 Show GitHub Exploit DB Packet Storm
257558 - justsystems ichitaro
ichitaro_portable_with_oreplug
ichitaro_viewer
just_frontier
just_jump
just_school
oreplug
rekishimail_bakumatsushishi_no_missho
rekishimail_sengokubusho_no_missho 		Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0269 2012-04-30 13:00 2012-04-28 Show GitHub Exploit DB Packet Storm
257559 - dotclear dotclear The updateFile function in inc/core/class.dc.media.php in the Media Manager in Dotclear before 2.2.3 does not properly restrict pathnames, which allows remote authenticated users to upload and execut… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-1584 2012-04-27 13:00 2011-06-8 Show GitHub Exploit DB Packet Storm
257560 - visiwave site_survey VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a (1) vws and (2) vwr file with an invalid Type prop… CWE-94
Code Injection 		CVE-2011-2386 2012-04-27 13:00 2011-06-8 Show GitHub Exploit DB Packet Storm