Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253851	7.2	危険	サイバートラスト株式会社 Linux ターボリナックスレッドハット	-	Linux kernel の udp_sendmsg 関数における権限昇格の脆弱性	CWE-DesignError	CVE-2009-2698	2010-02-17 11:45	2009-08-27	Show	GitHub Exploit DB Packet Storm

253852	7.2	危険	サイバートラスト株式会社 Linux ターボリナックスレッドハット	-	Linux kernel における proto_ops 構造体の初期化処理に関する権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2009-2692	2010-02-17 11:45	2009-08-14	Show	GitHub Exploit DB Packet Storm

253853	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の agp サブシステムにおける情報漏えいの脆弱性	CWE-Other その他	CVE-2009-1192	2010-02-17 11:45	2009-04-24	Show	GitHub Exploit DB Packet Storm

253854	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の CIFS サブシステムにおける Unicode 文字列の処理に関するバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1633	2010-02-17 11:45	2009-05-28	Show	GitHub Exploit DB Packet Storm

253855	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の CIFS における長大な nativeFileSystem フィールドの処理に関するバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1439	2010-02-17 11:44	2009-04-27	Show	GitHub Exploit DB Packet Storm

253856	6.8	警告	サイバートラスト株式会社 Mozilla Foundation Pango.org レッドハット	-	Pango の pango_glyph_string_set_size 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1194	2010-02-17 11:44	2009-05-8	Show	GitHub Exploit DB Packet Storm

253857	9.3	危険	Artifex Software サイバートラスト株式会社 Argyll CMS サン・マイクロシステムズレッドハット	-	Ghostscript の ICC Format ライブラリにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0792	2010-02-17 11:44	2009-04-14	Show	GitHub Exploit DB Packet Storm

253858	9.3	危険	Artifex Software サイバートラスト株式会社サン・マイクロシステムズレッドハット	-	ICC Format ライブラリにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-0584	2010-02-17 11:44	2009-03-23	Show	GitHub Exploit DB Packet Storm

253859	9.3	危険	Artifex Software サイバートラスト株式会社サン・マイクロシステムズレッドハット	-	ICC Format ライブラリにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0583	2010-02-17 11:43	2009-03-23	Show	GitHub Exploit DB Packet Storm

253860	6	警告	Artifex Software サイバートラスト株式会社レッドハット	-	Ghostscript の zseticcspace() 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0411	2010-02-17 11:43	2008-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223481	9.8	CRITICAL Network	squid-cache debian canonical	squid debian_linux ubuntu_linux	An issue was discovered in Squid through 4.7. When handling requests from users, Squid checks its rules to see if the request should be denied. Squid by default comes with rules to block access to th…	CWE-306 Missing Authentication for Critical Function	CVE-2019-12524	2024-11-21 13:23	2020-04-16	Show	GitHub Exploit DB Packet Storm

223482	4.5	MEDIUM Local	squid-cache	squid	An issue was discovered in Squid through 4.7. When Squid is run as root, it spawns its child processes as a lesser user, by default the user nobody. This is done via the leave_suid call. leave_suid l…	CWE-269 Improper Privilege Management	CVE-2019-12522	2024-11-21 13:23	2020-04-16	Show	GitHub Exploit DB Packet Storm

223483	5.9	MEDIUM Network	squid-cache canonical debian opensuse	squid ubuntu_linux debian_linux leap	An issue was discovered in Squid through 4.7. When Squid is parsing ESI, it keeps the ESI elements in ESIContext. ESIContext contains a buffer for holding a stack of ESIElements. When a new ESIElemen…	CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error	CVE-2019-12521	2024-11-21 13:23	2020-04-16	Show	GitHub Exploit DB Packet Storm

223484	9.8	CRITICAL Network	dlink	dap-1650_firmware	An issue was discovered on D-Link DAP-1650 devices before 1.04B02_J65H Hot Fix. Attackers can execute arbitrary commands.	CWE-78 OS Command	CVE-2019-12767	2024-11-21 13:23	2020-03-21	Show	GitHub Exploit DB Packet Storm

223485	6.5	MEDIUM Network	graphicsmagick debian opensuse	graphicsmagick debian_linux leap backports_sle	In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG.	CWE-77 Command Injection	CVE-2019-12921	2024-11-21 13:23	2020-03-19	Show	GitHub Exploit DB Packet Storm

223486	8.8	HIGH Network	solarwinds	serv-u_managed_file_transfer	SolarWinds Serv-U Managed File Transfer (MFT) Web client before 15.1.6 Hotfix 2 is vulnerable to Cross-Site Request Forgery in the file upload functionality via ?Command=Upload with the Dir and File …	CWE-352 Origin Validation Error	CVE-2019-12769	2024-11-21 13:23	2020-03-19	Show	GitHub Exploit DB Packet Storm

223487	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. Unauthorized users were able to read pipeline information of the last merge request. It has Incorrect Access C…	NVD-CWE-noinfo	CVE-2019-13002	2024-11-21 13:23	2020-03-11	Show	GitHub Exploit DB Packet Storm

223488	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 11.9 and later through 12.0.2. GitLab Snippets were vulnerable to an authorization issue that allowed unauthorized users to add comm…	CWE-863 Incorrect Authorization	CVE-2019-13001	2024-11-21 13:23	2020-03-11	Show	GitHub Exploit DB Packet Storm

223489	4.8	MEDIUM Network	solarwinds	netpath orion_platform network_performance_monitor	SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console Settings screen.	CWE-79 Cross-site Scripting	CVE-2019-12863	2024-11-21 13:23	2020-02-26	Show	GitHub Exploit DB Packet Storm

223490	9.1	CRITICAL Network	netgear	nighthawk_x10-r9000_firmware	In NETGEAR Nighthawk X10-R900 prior to 1.0.4.26, an attacker may bypass all authentication checks on the device's "NETGEAR Genie" SOAP API ("/soap/server_sa") by supplying a malicious X-Forwarded-For…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-12510	2024-11-21 13:23	2020-02-25	Show	GitHub Exploit DB Packet Storm