Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254291	1.9	注意	Linux レッドハット	-	Linux kernel の ntty_ioctl_tiocgicount 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4077	2011-02-1 13:33	2010-11-29	Show	GitHub Exploit DB Packet Storm

254292	4	警告	Linux レッドハット	-	Linux kernel の bcm_connect 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3874	2011-01-31 15:49	2010-12-8	Show	GitHub Exploit DB Packet Storm

254293	1.9	注意	Linux レッドハット	-	Linux kernel の viafb_ioctl_get_viafb_info 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4082	2011-01-31 15:40	2010-11-30	Show	GitHub Exploit DB Packet Storm

254294	1.9	注意	Linux レッドハット	-	Linux kernel の ivtvfb_ioctl 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4079	2011-01-31 15:03	2010-11-29	Show	GitHub Exploit DB Packet Storm

254295	1.9	注意	Linux レッドハット	-	Linux kernel の USB サブシステムにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4074	2011-01-31 15:01	2010-11-29	Show	GitHub Exploit DB Packet Storm

254296	2.1	注意	Linux レッドハット	-	Linux kernel の ethtool_get_rxnfc 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3861	2011-01-31 14:56	2010-12-10	Show	GitHub Exploit DB Packet Storm

254297	4.9	警告	Linux レッドハット	-	Linux kernel の hso_get_count 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3298	2011-01-28 16:03	2010-09-30	Show	GitHub Exploit DB Packet Storm

254298	4.9	警告	Linux レッドハット	-	Linux kernel の sound/core/seq/oss/seq_oss_init.c 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3080	2011-01-28 15:59	2010-09-20	Show	GitHub Exploit DB Packet Storm

254299	9.3	危険	マイクロソフト	-	Microsoft Windows Vista の sdclt.exe にて使用される BitLocker Drive Encryption API における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3145	2011-01-28 15:56	2011-01-11	Show	GitHub Exploit DB Packet Storm

254300	9.3	危険	マイクロソフト	-	MDAC および WDAC における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0027	2011-01-28 15:53	2011-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219131	8.8	HIGH Network	libsdl opensuse	sdl2_image leap backports_sle	An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. …	CWE-787 Out-of-bounds Write	CVE-2019-5058	2024-11-21 13:44	2019-08-1	Show	GitHub Exploit DB Packet Storm

219132	8.8	HIGH Network	libsdl opensuse	sdl2_image leap backports_sle	An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. …	CWE-787 Out-of-bounds Write	CVE-2019-5057	2024-11-21 13:44	2019-08-1	Show	GitHub Exploit DB Packet Storm

219133	5.5	MEDIUM Local	virustotal	yara	An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3.8.1. A specially crafted binary file can cause a negative value to be read to satisfy an assert, res…	CWE-754 CWE-617 Improper Check for Unusual or Exceptional Conditions Reachable Assertion	CVE-2019-5020	2024-11-21 13:44	2019-08-1	Show	GitHub Exploit DB Packet Storm

219134	5.5	MEDIUM Local	videolan opensuse	vlc_media_player leap backports	Double Free in VLC versions <= 3.0.6 leads to a crash.	CWE-415 Double Free	CVE-2019-5460	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219135	7.1	HIGH Local	videolan opensuse	vlc_media_player leap backports backports_sle	An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read.	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2019-5459	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219136	5.4	MEDIUM Network	http-file-server_project	http-file-server	Cross-site scripting (XSS) vulnerability in http-file-server (all versions) allows an attacker with access to the server file system to execute arbitrary JavaScript code in victim's browser.	CWE-79 Cross-site Scripting	CVE-2019-5458	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219137	5.4	MEDIUM Network	min-http-server_project	min-http-server	Cross-site scripting (XSS) vulnerability in min-http-server (all versions) allows an attacker with access to the server file system to execute arbitrary JavaScript code in victim's browser.	CWE-79 Cross-site Scripting	CVE-2019-5457	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219138	8.1	HIGH Network	ui	unifi_controller	SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use l…	CWE-255 Credentials Management	CVE-2019-5456	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219139	6.8	MEDIUM Physics	nextcloud	nextcloud	Bypassing lock protection exists in Nextcloud Android app 3.6.0 when creating a multi-account and aborting the process.	CWE-287 Improper Authentication	CVE-2019-5455	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

219140	9.8	CRITICAL Network	nextcloud	nextcloud	SQL Injection in the Nextcloud Android app prior to version 3.0.0 allows to destroy a local cache when a harmful query is executed requiring to resetup the account.	CWE-89 SQL Injection	CVE-2019-5454	2024-11-21 13:44	2019-07-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed