Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254231	9.3	危険	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	JDK、JRE および SDK の HsbParser.getSoundBank 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3867	2010-02-24 12:23	2009-11-5	Show	GitHub Exploit DB Packet Storm

254232	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Web Server の WebDAV 実装におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2010-0388	2010-02-23 11:59	2010-01-20	Show	GitHub Exploit DB Packet Storm

254233	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Web Server における複数のヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0387	2010-02-23 11:59	2010-01-20	Show	GitHub Exploit DB Packet Storm

254234	10	危険	サン・マイクロシステムズ	-	Sun Java System Web Server の WebDAV 実装におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0361	2010-02-23 11:58	2010-01-20	Show	GitHub Exploit DB Packet Storm

254235	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Web Server におけるヒープ領域のメモリ格納場所を上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2010-0360	2010-02-23 11:58	2010-01-20	Show	GitHub Exploit DB Packet Storm

254236	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Web Server における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-0273	2010-02-23 11:58	2010-01-8	Show	GitHub Exploit DB Packet Storm

254237	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Web Server におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0272	2010-02-23 11:57	2010-01-8	Show	GitHub Exploit DB Packet Storm

254238	7.5	危険	サン・マイクロシステムズ VMware レッドハット	-	Sun Java SE の Java Web Start 実装における署名された JAR ファイルと JNLP アプリケーション処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2009-3886	2010-02-23 11:52	2009-11-9	Show	GitHub Exploit DB Packet Storm

254239	5	警告	アップル VMware サン・マイクロシステムズレッドハット	-	Sun Java SE および OpenJDK の TimeZone.getTimeZone メソッドにおけるローカルファイルの存在を知られる脆弱性	CWE-Other その他	CVE-2009-3884	2010-02-23 11:52	2009-11-9	Show	GitHub Exploit DB Packet Storm

254240	7.5	危険	サン・マイクロシステムズサイバートラスト株式会社 VMware レッドハット	-	Sun Java SE および OpenJDK の Windows Pluggable Look and Feel (PL&F) における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2009-3883	2010-02-23 11:52	2009-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209691	6.5	MEDIUM Network	redhat	libvirt enterprise_linux	An issue was discovered in qemuDomainGetStatsIOThread in qemu/qemu_driver.c in libvirt 4.10.0 though 6.x before 6.1.0. A memory leak was found in the virDomainListGetStats libvirt API that is respons…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-12430	2024-11-21 13:59	2020-04-29	Show	GitHub Exploit DB Packet Storm

209692	9.8	CRITICAL Network	phpgurukul	online_course_registration	Online Course Registration 2.0 has multiple SQL injections that would can lead to a complete database compromise and authentication bypass in the login pages: admin/change-password.php, admin/check_a…	CWE-89 SQL Injection	CVE-2020-12429	2024-11-21 13:59	2020-04-29	Show	GitHub Exploit DB Packet Storm

209693	7.5	HIGH Network	openldap debian opensuse canonical netapp broadcom apple oracle	openldap debian_linux leap ubuntu_linux cloud_backup steelstore_cloud_integrated_storage h410c_firmware h300s_firmware h500s_firmware h700s_firmware h300e_firmware h5…	In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).	CWE-674 Uncontrolled Recursion	CVE-2020-12243	2024-11-21 13:59	2020-04-29	Show	GitHub Exploit DB Packet Storm

209694	4.3	MEDIUM Network	octopus	octopus_deploy	In Octopus Deploy before 2019.12.9 and 2020 before 2020.1.12, the TaskView permission is not scoped to any dimension. For example, a scoped user who is scoped to only one tenant can view server tasks…	NVD-CWE-noinfo	CVE-2020-12286	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209695	9.8	CRITICAL Network	ffmpeg canonical debian	ffmpeg ubuntu_linux debian_linux	cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.	CWE-787 Out-of-bounds Write	CVE-2020-12284	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209696	8.8	HIGH Network	opmantek	open-audit	An issue was discovered in Open-AudIT 3.3.1. There is shell metacharacter injection via attributes to an open-audit/configuration/ URI. An attacker can exploit this by adding an excluded IP address t…	CWE-78 OS Command	CVE-2020-12078	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209697	9.8	CRITICAL Network	libgit2 debian	libgit2 debian_linux	An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when c…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2020-12279	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209698	9.8	CRITICAL Network	libgit2 debian	libgit2 debian_linux	An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2020-12278	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209699	7.5	HIGH Network	wavlink	wl-wn579g3_firmware wl-wn575a3_firmware wl-wn530hg4_firmware wn531g3_firmware wn533a8_firmware wn531a6_firmware wn551k1_firmware wn535g3_firmware wn530h4_firmware wn57x93_f…	An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for internal usage. The devices automatically…	CWE-306 Missing Authentication for Critical Function	CVE-2020-12266	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

209700	7.8	HIGH Local	valvesoftware	source	Valve Source allows local users to gain privileges by writing to the /tmp/hl2_relaunch file, which is later executed in the context of a different user account.	CWE-78 OS Command	CVE-2020-12242	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm