Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254681 6.8 警告 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット		 - FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2499 2010-12-1 15:24 2010-07-12 Show GitHub Exploit DB Packet Storm
254682 6.8 警告 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット		 - FreeType の psh_glyph_find_strong_points 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2498 2010-12-1 15:21 2010-07-12 Show GitHub Exploit DB Packet Storm
254683 5 警告 The PHP Group
アップル
ターボリナックス		 - PHP の strrchr 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2484 2010-12-1 15:19 2010-07-22 Show GitHub Exploit DB Packet Storm
254684 9.3 危険 アップル
アドビシステムズ
レッドハット		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2216 2010-12-1 15:12 2010-08-10 Show GitHub Exploit DB Packet Storm
254685 4.3 警告 アップル
アドビシステムズ
レッドハット		 - Adobe Flash Player および Adobe AIR におけるクリックジャッキングに関するユーザにリンクを選択させる脆弱性 CWE-Other
その他 		CVE-2010-2215 2010-12-1 15:11 2010-08-10 Show GitHub Exploit DB Packet Storm
254686 9.3 危険 アップル
アドビシステムズ
レッドハット		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2214 2010-12-1 15:10 2010-08-10 Show GitHub Exploit DB Packet Storm
254687 9.3 危険 アップル
アドビシステムズ
レッドハット		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2213 2010-12-1 15:08 2010-08-10 Show GitHub Exploit DB Packet Storm
254688 5.8 警告 フェンリル株式会社 - Grani におけるクリップボードの操作に関する脆弱性 CWE-Other
その他 		CVE-2010-3919 2010-12-1 12:02 2010-12-1 Show GitHub Exploit DB Packet Storm
254689 5.8 警告 フェンリル株式会社 - Sleipnir におけるクリップボードの操作に関する脆弱性 CWE-Other
その他 		CVE-2010-3918 2010-12-1 12:02 2010-12-1 Show GitHub Exploit DB Packet Storm
254690 6.8 警告 アップル
FreeType Project
オラクル		 - FreeType における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2497 2010-11-30 14:29 2010-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215201 6.5 MEDIUM
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9720 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
215202 8.8 HIGH
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9719 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
215203 6.5 MEDIUM
Network 		libav libav In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-9717 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
215204 5.3 MEDIUM
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: … NVD-CWE-noinfo
CVE-2019-9680 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
215205 8.8 HIGH
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC… CWE-276
Incorrect Default Permissions  		CVE-2019-9679 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
215206 7.5 HIGH
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing a malicious packet. Affected products include: IPC-HDW1X2X,I… NVD-CWE-noinfo
CVE-2019-9678 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
215207 9.8 CRITICAL
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Affected products include: IPC-HDW1X2… CWE-120
Classic Buffer Overflow 		CVE-2019-9677 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
215208 5.3 MEDIUM
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products incl… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-9681 2024-11-21 13:52 2019-09-18 Show GitHub Exploit DB Packet Storm
215209 9.8 CRITICAL
Network 		libreoffice
opensuse 		libreoffice
leap 		LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. LibreOffice… CWE-417
 Channel and Path Errors 		CVE-2019-9855 2024-11-21 13:52 2019-09-7 Show GitHub Exploit DB Packet Storm
215210 7.8 HIGH
Local 		libreoffice
redhat
debian
canonical
opensuse
fedoraproject 		libreoffice
enterprise_linux
debian_linux
ubuntu_linux
leap
fedora 		LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to … CWE-22
Path Traversal 		CVE-2019-9854 2024-11-21 13:52 2019-09-7 Show GitHub Exploit DB Packet Storm