Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254921	10	危険	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の stap-server における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4273	2010-03-16 11:14	2010-01-26	Show	GitHub Exploit DB Packet Storm

254922	6.5	警告	サイバートラスト株式会社 Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0298	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

254923	4.4	警告	サイバートラスト株式会社 Fabrice Bellard レッドハット	-	QEMU の usb_host_handle_control 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0297	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

254924	6.8	警告	サン・マイクロシステムズ freedesktop.org	-	Poppler における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3605	2010-03-15 16:40	2009-11-2	Show	GitHub Exploit DB Packet Storm

254925	4.1	警告	Linux レッドハット	-	Linux kernel の smbfs に関する脆弱性	-	CVE-2006-5871	2010-03-15 16:40	2005-10-5	Show	GitHub Exploit DB Packet Storm

254926	7.8	危険	Linux レッドハット	-	Linux kernel の selinux_parse_skb_ipv6 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2005-4886	2010-03-15 16:40	2005-10-5	Show	GitHub Exploit DB Packet Storm

254927	5	警告	サン・マイクロシステムズ	-	Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2003-1589	2010-03-15 16:39	2003-12-2	Show	GitHub Exploit DB Packet Storm

254928	5	警告	サン・マイクロシステムズ	-	Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2003-1590	2010-03-15 16:39	2003-08-13	Show	GitHub Exploit DB Packet Storm

254929	7.1	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の handle_dr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3722	2010-03-15 15:23	2009-10-30	Show	GitHub Exploit DB Packet Storm

254930	4.3	警告	シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン)	-	APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4406	2010-03-12 15:13	2009-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221981	7.8	HIGH Local	10-strike	free_photo_viewer	Free Photo Viewer 1.3 allows remote attackers to execute arbitrary code via a crafted BMP and/or TIFF file that triggers a malformed SEH, as demonstrated by a 0012ECB4 FreePhot.00425642 42200008 corr…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-19468	2024-11-21 13:34	2019-12-1	Show	GitHub Exploit DB Packet Storm

221982	5.3	MEDIUM Network	cbc	gem	The CBC Gem application before 9.24.1 for Android and before 9.26.0 for iOS has Unencrypted Analytics.	CWE-311 Missing Encryption of Sensitive Data	CVE-2019-19464	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221983	5.3	MEDIUM Network	huami	mi_fit	The Anhui Huami Mi Fit application before 4.0.11 for Android has an Unencrypted Update Check.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-19463	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221984	5.5	MEDIUM Local	linux netapp canonical opensuse debian	linux_kernel active_iq_unified_manager solidfire hci_management_node hci_storage_node hci_compute_node ubuntu_linux leap debian_linux	relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.	CWE-476 NULL Pointer Dereference	CVE-2019-19462	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221985	5.5	MEDIUM Local	gnome fedoraproject opensuse	dia fedora leap	When GNOME Dia before 2019-11-27 is launched with a filename argument that is not a valid codepoint in the current encoding, it enters an endless loop, thus endlessly writing text to stdout. If this …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-19451	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221986	7.5	HIGH Network	omniosce	omnios	illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet…	CWE-20 Improper Input Validation	CVE-2019-19396	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221987	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image can lead to slab-out-of-bounds write access in index_rbio_pages in fs/btrfs/raid56.c.	CWE-787 Out-of-bounds Write	CVE-2019-19378	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221988	7.8	HIGH Local	linux netapp	linux_kernel cloud_backup steelstore_cloud_integrated_storage active_iq_unified_manager solidfire_baseboard_management_controller	In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfs_queue_work in fs/btrfs/async-thread.c.	CWE-416 Use After Free	CVE-2019-19377	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221989	9.1	CRITICAL Network	luajit moonjit_project	luajit moonjit	In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases in…	CWE-843 Type Confusion	CVE-2019-19391	2024-11-21 13:34	2019-11-30	Show	GitHub Exploit DB Packet Storm

221990	6.1	MEDIUM Network	fusionpbx	fusionpbx	A cross-site scripting (XSS) vulnerability in app/dialplans/dialplan_detail_edit.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the dialplan_uuid parameter.	CWE-79 Cross-site Scripting	CVE-2019-19388	2024-11-21 13:34	2019-11-29	Show	GitHub Exploit DB Packet Storm