Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254631	5	警告	オラクル	-	Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0066	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

254632	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

254633	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

254634	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

254635	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

254636	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

254637	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

254638	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

254639	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

254640	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222031	7.5	HIGH Network	mozilla siemens	network_security_services ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware rugge…	In Network Security Services before 3.44, a malformed Netscape Certificate Sequence can cause NSS to crash, resulting in a denial of service.	CWE-295 Improper Certificate Validation	CVE-2019-17007	2024-11-21 13:31	2020-10-23	Show	GitHub Exploit DB Packet Storm

222032	9.8	CRITICAL Network	siemens mozilla netapp	ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware r…	In Network Security Services (NSS) before 3.46, several cryptographic primitives had missing length checks. In cases where the application calling the library did not perform a sanity check on the in…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2019-17006	2024-11-21 13:31	2020-10-23	Show	GitHub Exploit DB Packet Storm

222033	6.5	MEDIUM Adjacent	august	august_home connect_wi-fi_bridge_firmware	Use of hard-coded cryptographic key vulnerability in August Connect Wi-Fi Bridge App, Connect Firmware allows an attacker to decrypt an intercepted payload containing the Wi-Fi network authentication…	CWE-798 Use of Hard-coded Credentials	CVE-2019-17098	2024-11-21 13:31	2020-09-30	Show	GitHub Exploit DB Packet Storm

222034	7.8	HIGH Local	ivanti	workspace_control	In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry…	CWE-269 Improper Privilege Management	CVE-2019-17066	2024-11-21 13:31	2020-05-19	Show	GitHub Exploit DB Packet Storm

222035	6.7	MEDIUM Local	netatmo	smart_indoor_camera_firmware	Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in firmware versions prior to x.xx of Netatmo Smart Indoor Camera allows an attacker to execute comma…	CWE-77 Command Injection	CVE-2019-17101	2024-11-21 13:31	2020-04-24	Show	GitHub Exploit DB Packet Storm

222036	9.8	CRITICAL Network	mysyngeryss	husky_rtu_6049-e70_firmware	The Synergy Systems & Solutions (SSS) HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function (CWE-306) vulnerability. The affected product does n…	CWE-306 Missing Authentication for Critical Function	CVE-2019-16879	2024-11-21 13:31	2020-04-15	Show	GitHub Exploit DB Packet Storm

222037	6.1	MEDIUM Network	mageewp	onetone	includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress has multiple stored XSS issues.	CWE-79 Cross-site Scripting	CVE-2019-17231	2024-11-21 13:31	2020-04-4	Show	GitHub Exploit DB Packet Storm

222038	5.3	MEDIUM Network	mageewp	onetone	includes/theme-functions.php in the OneTone theme through 3.0.6 for WordPress allows unauthenticated options changes.	NVD-CWE-noinfo	CVE-2019-17230	2024-11-21 13:31	2020-04-4	Show	GitHub Exploit DB Packet Storm

222039	7.5	HIGH Network	freeradius opensuse	freeradius leap	In FreeRADIUS 3.0.x before 3.0.20, the EAP-pwd module used a global OpenSSL BN_CTX instance to handle all handshakes. This mean multiple threads use the same BN_CTX instance concurrently, resulting i…	CWE-662 Improper Synchronization	CVE-2019-17185	2024-11-21 13:31	2020-03-21	Show	GitHub Exploit DB Packet Storm

222040	8.8	HIGH Network	mozilla canonical	firefox thunderbird firefox_esr ubuntu_linux	Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability aff…	CWE-843 Type Confusion	CVE-2019-17026	2024-11-21 13:31	2020-03-2	Show	GitHub Exploit DB Packet Storm