Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253141	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253142	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253143	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253144	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253145	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

253146	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

253147	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212181	7.0	HIGH Local	checkpoint	endpoint_security	A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, …	CWE-59 Link Following	CVE-2019-8454	2024-11-21 13:49	2019-04-30	Show	GitHub Exploit DB Packet Storm

212182	7.8	HIGH Local	checkpoint	zonealarm endpoint_security	A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission c…	CWE-59 Link Following	CVE-2019-8452	2024-11-21 13:49	2019-04-23	Show	GitHub Exploit DB Packet Storm

212183	7.1	HIGH Local	checkpoint	zonealarm	A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on fi…	CWE-59 Link Following	CVE-2019-8455	2024-11-21 13:49	2019-04-18	Show	GitHub Exploit DB Packet Storm

212184	5.5	MEDIUM Local	checkpoint	zonealarm	Some of the DLLs loaded by Check Point ZoneAlarm up to 15.4.062 are taken from directories where all users have write permissions. This can allow a local attacker to replace a DLL file with a malicio…	CWE-426 Untrusted Search Path	CVE-2019-8453	2024-11-21 13:49	2019-04-18	Show	GitHub Exploit DB Packet Storm

212185	5.9	MEDIUM Network	checkpoint	ipsec_vpn	Check Point IKEv2 IPsec VPN up to R80.30, in some less common conditions, may allow an attacker with knowledge of the internal configuration and setup to successfully connect to a site-to-site VPN se…	NVD-CWE-noinfo	CVE-2019-8456	2024-11-21 13:49	2019-04-10	Show	GitHub Exploit DB Packet Storm

212186	9.1	CRITICAL Network	heimdalsecurity	thor	Heimdal Thor Agent 2.5.17x before 2.5.173 does not verify X.509 certificates from TLS servers, which allows remote attackers to spoof servers and obtain sensitive information via a crafted certificat…	CWE-295 Improper Certificate Validation	CVE-2019-8351	2024-11-21 13:49	2019-03-22	Show	GitHub Exploit DB Packet Storm

212187	9.8	CRITICAL Network	uvnc	ultravnc	UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside RAW decoder, which can potentially result code execution. This attack appear to be exploitable via network connectiv…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2019-8280	2024-11-21 13:49	2019-03-9	Show	GitHub Exploit DB Packet Storm

212188	7.5	HIGH Network	uvnc siemens	ultravnc sinumerik_pcu_base_win7_software\/ipc sinumerik_pcu_base_win10_software\/ipc sinumerik_access_mymachine\/p2p	UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows an attacker to read stack memory and can be abused for information disclosure. Combined with another v…	CWE-665 Improper Initialization	CVE-2019-8277	2024-11-21 13:49	2019-03-9	Show	GitHub Exploit DB Packet Storm

212189	7.5	HIGH Network	uvnc siemens	ultravnc sinumerik_pcu_base_win7_software\/ipc sinumerik_pcu_base_win10_software\/ipc sinumerik_access_mymachine\/p2p	UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result in Denial of Service (DoS). This attack appears to be exploi…	CWE-787 Out-of-bounds Write	CVE-2019-8276	2024-11-21 13:49	2019-03-9	Show	GitHub Exploit DB Packet Storm

212190	9.8	CRITICAL Network	uvnc siemens	ultravnc sinumerik_pcu_base_win7_software\/ipc sinumerik_pcu_base_win10_software\/ipc sinumerik_access_mymachine\/p2p	UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users. This attack appears to be exploitab…	NVD-CWE-Other	CVE-2019-8275	2024-11-21 13:49	2019-03-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed