Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255151 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
255152 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255153 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255154 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
255155 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
255156 10 危険 サイバートラスト株式会社
XEmacs		 - XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2688 2010-01-12 14:48 2009-08-5 Show GitHub Exploit DB Packet Storm
255157 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
255158 5 警告 アップル - Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2009-2842 2010-01-7 12:09 2009-11-11 Show GitHub Exploit DB Packet Storm
255159 5.5 警告 シックス・アパート株式会社 - Movable Type におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-01-6 15:01 2010-01-6 Show GitHub Exploit DB Packet Storm
255160 9.3 危険 マイクロソフト - Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3135 2010-01-6 14:44 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223331 5.5 MEDIUM
Local 		sony xperia_touch_firmware The Sony Xperia Touch Android device with a build fingerprint of Sony/blanc_windy/blanc_windy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name … CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15743 2024-11-21 13:29 2019-11-15 Show GitHub Exploit DB Packet Storm
223332 8.8 HIGH
Adjacent 		ti cc256xc-bt-sp_firmware
cc256xb-bt-sp_firmware
wl18xx-bt-sp_firmware 		Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices, when LE scan mode is used, allow remote attackers to trigger a buffer overflow via a malformed Bluetooth Low Energy adverti… CWE-120
Classic Buffer Overflow 		CVE-2019-15948 2024-11-21 13:29 2019-11-14 Show GitHub Exploit DB Packet Storm
223333 6.5 MEDIUM
Network 		zyxel 2.00\(abbx.3\) ZyXEL P-1302-T10D v3 devices with firmware version 2.00(ABBX.3) and earlier do not properly enforce access control and could allow an unauthorized user to access certain pages that require admin priv… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-15815 2024-11-21 13:29 2019-11-13 Show GitHub Exploit DB Packet Storm
223334 7.7 HIGH
Network 		cisco telepresence_advanced_media_gateway A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. T… CWE-20
 Improper Input Validation  		CVE-2019-15966 2024-11-21 13:29 2019-11-6 Show GitHub Exploit DB Packet Storm
223335 7.2 HIGH
Network 		sonatype nexus_repository_manager There is an OS Command Injection in Nexus Repository Manager <= 2.14.14 (bypass CVE-2019-5475) that could allow an attacker a Remote Code Execution (RCE). All instances using CommandLineExecutor.java… CWE-78
OS Command  		CVE-2019-15588 2024-11-21 13:29 2019-11-2 Show GitHub Exploit DB Packet Storm
223336 7.2 HIGH
Network 		fortiguard fortiextender_firmware An OS command injection vulnerability in FortiExtender 4.1.0 to 4.1.1, 4.0.0 and below under CLI admin console may allow unauthorized administrators to run arbitrary system level commands via special… CWE-78
OS Command  		CVE-2019-15710 2024-11-21 13:29 2019-11-1 Show GitHub Exploit DB Packet Storm
223337 7.5 HIGH
Network 		rdesktop rdesktop RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network c… CWE-125
Out-of-bounds Read 		CVE-2019-15682 2024-11-21 13:29 2019-10-31 Show GitHub Exploit DB Packet Storm
223338 9.8 CRITICAL
Network 		turbovnc turbovnc TurboVNC server code contains stack buffer overflow vulnerability in commit prior to cea98166008301e614e0d36776bf9435a536136e. This could possibly result into remote code execution, since stack frame… CWE-787
 Out-of-bounds Write 		CVE-2019-15683 2024-11-21 13:29 2019-10-30 Show GitHub Exploit DB Packet Storm
223339 7.5 HIGH
Network 		libvnc_project
canonical
debian
siemens 		libvncserver
ubuntu_linux
debian_linux
simatic_itc1500_firmware
simatic_itc1500_pro_firmware
simatic_itc1900_firmware
simatic_itc1900_pro_firmware
simatic_itc2200_firmware
sim… 		LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information discl… CWE-665
 Improper Initialization 		CVE-2019-15681 2024-11-21 13:29 2019-10-30 Show GitHub Exploit DB Packet Storm
223340 7.5 HIGH
Network 		tightvnc tightvnc TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity. CWE-476
 NULL Pointer Dereference 		CVE-2019-15680 2024-11-21 13:29 2019-10-30 Show GitHub Exploit DB Packet Storm