Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253091	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253092	9	危険	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2509	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253093	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253094	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

253095	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253096	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253097	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253098	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253099	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253100	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213091	5.3	MEDIUM Network	primx	zed zedmail zonecentral	Limited plaintext disclosure exists in PRIMX Zed Entreprise for Windows before 6.1.2240, Zed Entreprise for Windows (ANSSI qualification submission) before 6.1.2150, Zed Entreprise for Mac before 2.0…	CWE-200 Information Exposure	CVE-2019-7312	2024-11-21 13:47	2019-02-3	Show	GitHub Exploit DB Packet Storm

213092	7.8	HIGH Local	freedesktop canonical debian fedoraproject redhat	poppler ubuntu_linux debian_linux fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux enterprise_linux_eus enterprise_linu…	In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash…	CWE-125 CWE-681 Out-of-bounds Read Incorrect Conversion between Numeric Types	CVE-2019-7310	2024-11-21 13:47	2019-02-3	Show	GitHub Exploit DB Packet Storm

213093	5.5	MEDIUM Local	gnu	glibc	In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significan…	NVD-CWE-noinfo	CVE-2019-7309	2024-11-21 13:47	2019-02-3	Show	GitHub Exploit DB Packet Storm

213094	5.6	MEDIUM Local	linux canonical opensuse	linux_kernel ubuntu_linux leap	kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different sta…	CWE-189 Numeric Errors	CVE-2019-7308	2024-11-21 13:47	2019-02-2	Show	GitHub Exploit DB Packet Storm

213095	7.2	HIGH Network	zevenet	zen_load_balancer	Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as root via shell metacharacters in the index.cgi?action=View_Cert certname parameter.	CWE-78 OS Command	CVE-2019-7301	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm

213096	7.2	HIGH Network	articatech	artica_proxy	Artica Proxy 3.06.200056 allows remote attackers to execute arbitrary commands as root by reading the ressources/settings.inc ldap_admin and ldap_password fields, using these credentials at logon.php…	CWE-522 Insufficiently Protected Credentials	CVE-2019-7300	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm

213097	8.1	HIGH Network	dlink	dir-823g_firmware	An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 request. Thi…	CWE-78 OS Command	CVE-2019-7298	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm

213098	9.8	CRITICAL Network	d-link	dir-823g_firmware	An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to execute arbitrary OS commands via shell metacharacters in a cra…	CWE-78 OS Command	CVE-2019-7297	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm

213099	6.1	MEDIUM Network	typora	typora	typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula.	CWE-79 Cross-site Scripting	CVE-2019-7296	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm

213100	6.1	MEDIUM Network	typora	typora	typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula.	CWE-79 Cross-site Scripting	CVE-2019-7295	2024-11-21 13:47	2019-02-1	Show	GitHub Exploit DB Packet Storm