Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254191	6.8	警告	アップル	-	Apple Mac OS X のパスワードサーバにおけるパスワードの認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3783	2010-12-1 16:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

254192	6.8	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2807	2010-12-1 16:00	2010-08-19	Show	GitHub Exploit DB Packet Storm

254193	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の t42_parse_sfnts 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2806	2010-12-1 15:58	2010-08-19	Show	GitHub Exploit DB Packet Storm

254194	6.8	警告	アップルターボリナックス FreeType Project レッドハットオラクル	-	FreeType の FT_Stream_EnterFrame 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2805	2010-12-1 15:55	2010-08-19	Show	GitHub Exploit DB Packet Storm

254195	5.1	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType の Ins_IUP 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2520	2010-12-1 15:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

254196	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2519	2010-12-1 15:27	2010-07-12	Show	GitHub Exploit DB Packet Storm

254197	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の gray_render_span 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2500	2010-12-1 15:26	2010-07-12	Show	GitHub Exploit DB Packet Storm

254198	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2499	2010-12-1 15:24	2010-07-12	Show	GitHub Exploit DB Packet Storm

254199	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の psh_glyph_find_strong_points 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2498	2010-12-1 15:21	2010-07-12	Show	GitHub Exploit DB Packet Storm

254200	5	警告	The PHP Group アップルターボリナックス	-	PHP の strrchr 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2484	2010-12-1 15:19	2010-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219701	7.2	HIGH Network	redhat	ansible_tower	When running Tower before 3.4.3 on OpenShift or Kubernetes, application credentials are exposed to playbook job runs via environment variables. A malicious user with the ability to write playbooks co…	CWE-200 Information Exposure	CVE-2019-3869	2024-11-21 13:42	2019-03-28	Show	GitHub Exploit DB Packet Storm

219702	7.5	HIGH Network	gnu fedoraproject	gnutls fedora	A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A memory corruption (double free) vulnerability in the certificate verification API. Any client or server application that verifi…	CWE-415 CWE-416 Double Free Use After Free	CVE-2019-3829	2024-11-21 13:42	2019-03-28	Show	GitHub Exploit DB Packet Storm

219703	6.1	MEDIUM Network	mod_auth_mellon_project fedoraproject redhat canonical	mod_auth_mellon fedora enterprise_linux ubuntu_linux	A vulnerability was found in mod_auth_mellon before v0.14.2. An open redirect in the logout URL allows requests with backslashes to pass through by assuming that it is a relative URL, while the brows…	CWE-601 Open Redirect	CVE-2019-3877	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219704	4.8	MEDIUM Network	moodle	moodle	A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Users with the "login as other users" capability (such as administrators/managers) can access other users' Dashboar…	CWE-79 Cross-site Scripting	CVE-2019-3847	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219705	6.3	MEDIUM Network	redhat opensuse	libvirt leap	A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash li…	CWE-476 NULL Pointer Dereference	CVE-2019-3840	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219706	4.2	MEDIUM Local	redhat	ansible	Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible cont…	CWE-22 Path Traversal	CVE-2019-3828	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219707	7.5	HIGH Network	ceph canonical	civetweb ubuntu_linux	A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaus…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2019-3821	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219708	8.8	HIGH Network	rpm	libcomps	A use-after-free flaw has been discovered in libcomps before version 0.1.10 in the way ObjMRTrees are merged. An attacker, who is able to make an application read a crafted comps XML file, may be abl…	CWE-416 Use After Free	CVE-2019-3817	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219709	6.8	MEDIUM Network	dovecot canonical opensuse	dovecot ubuntu_linux leap	It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid certificate with an empty username field could …	CWE-295 Improper Certificate Validation	CVE-2019-3814	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

219710	4.3	MEDIUM Network	moodle	moodle	A vulnerability was found in moodle before version 3.6.3. The get_with_capability_join and get_users_by_capability functions were not taking context freezing into account when checking user capabilit…	NVD-CWE-noinfo	CVE-2019-3852	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm