Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255201	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

255202	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

255203	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

255204	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

255205	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

255206	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

255207	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

255208	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

255209	5	警告	アップル	-	Apple Safari におけるローカル HTML ファイルを読まれる脆弱性	CWE-Other その他	CVE-2009-2842	2010-01-7 12:09	2009-11-11	Show	GitHub Exploit DB Packet Storm

255210	5.5	警告	シックス・アパート株式会社	-	Movable Type におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	-	2010-01-6 15:01	2010-01-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224101	7.5	HIGH Network	dpdk redhat fedoraproject	data_plane_development_kit enterprise_linux_fast_datapath openstack virtualization_eus fedora	A flaw was found in all dpdk version 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4 and 19.x.x before 19.08.1 where a malicious master, or a container with access to vhost_user …	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-14818	2024-11-21 13:27	2019-11-15	Show	GitHub Exploit DB Packet Storm

224102	7.8	HIGH Local	intel	nuvoton_consumer_infrared	Improper permissions in the installer for the Nuvoton* CIR Driver versions 1.02.1002 and before may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-276 Incorrect Default Permissions	CVE-2019-14602	2024-11-21 13:27	2019-11-15	Show	GitHub Exploit DB Packet Storm

224103	6.5	MEDIUM Network	redhat	syndesis fuse	It was found that the Syndesis configuration for Cross-Origin Resource Sharing was set to allow all origins. An attacker could use this lack of protection to conduct phishing attacks and further acce…	NVD-CWE-Other	CVE-2019-14860	2024-11-21 13:27	2019-11-9	Show	GitHub Exploit DB Packet Storm

224104	6.5	MEDIUM Network	fedoraproject redhat debian	389_directory_server enterprise_linux debian_linux	A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to vie…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-14824	2024-11-21 13:27	2019-11-9	Show	GitHub Exploit DB Packet Storm

224105	4.3	MEDIUM Network	atlassian	troubleshooting_and_support jira bitbucket confluence crowd fisheye crucible bamboo	The Atlassian Troubleshooting and Support Tools plugin prior to version 1.17.2 allows an unprivileged user to initiate periodic log scans and send the results to a user-specified email address due to…	CWE-862 Missing Authorization	CVE-2019-15005	2024-11-21 13:27	2019-11-8	Show	GitHub Exploit DB Packet Storm

224106	7.5	HIGH Network	atlassian	jira_service_desk	The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5, from 4…	CWE-22 Path Traversal	CVE-2019-15004	2024-11-21 13:27	2019-11-7	Show	GitHub Exploit DB Packet Storm

224107	5.3	MEDIUM Network	atlassian	jira_service_desk	The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5, from 4…	CWE-22 Path Traversal	CVE-2019-15003	2024-11-21 13:27	2019-11-7	Show	GitHub Exploit DB Packet Storm

224108	4.9	MEDIUM Network	samba opensuse fedoraproject	samba leap fedora	A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not po…	CWE-476 NULL Pointer Dereference	CVE-2019-14847	2024-11-21 13:27	2019-11-6	Show	GitHub Exploit DB Packet Storm

224109	5.4	MEDIUM Network	samba opensuse fedoraproject	samba leap fedora	A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Sam…	CWE-521 Weak Password Requirements	CVE-2019-14833	2024-11-21 13:27	2019-11-6	Show	GitHub Exploit DB Packet Storm

224110	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote OS Command Injection vulnerability allows an atta…	CWE-78 OS Command	CVE-2019-14931	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm