Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 12:06 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255361	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255362	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255363	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255364	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255365	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222631	8.8	HIGH Network	nokia	impact	Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was found that may lead to Remote Code Execution.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-17403	2024-11-21 13:32	2019-11-26	Show	GitHub Exploit DB Packet Storm

222632	7.8	HIGH Local	eracent	epa_agent	An issue was discovered in Eracent EPA Agent through 10.2.26. The agent executable, when installed for non-root operations (scanning), can be used to start external programs with elevated permissions…	CWE-426 Untrusted Search Path	CVE-2019-17446	2024-11-21 13:32	2019-11-23	Show	GitHub Exploit DB Packet Storm

222633	5.5	MEDIUM Local	eracent	eda_agent epa_agent epm_agent eua_agent flw_agent sum_agent	An issue was discovered in Eracent EDA, EPA, EPM, EUA, FLW, and SUM Agent through 10.2.26. The agent executable, when installed for non-root operations (scanning), can be forced to copy files from th…	CWE-59 Link Following	CVE-2019-17445	2024-11-21 13:32	2019-11-23	Show	GitHub Exploit DB Packet Storm

222634	7.8	HIGH Local	fortinet	forticlient	An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to…	CWE-78 OS Command	CVE-2019-17650	2024-11-21 13:32	2019-11-22	Show	GitHub Exploit DB Packet Storm

222635	7.2	HIGH Network	netapp	ontap_select_deploy_administration_utility	All versions of ONTAP Select Deploy administration utility are susceptible to a vulnerability which when successfully exploited could allow an administrative user to escalate their privileges.	NVD-CWE-noinfo	CVE-2019-17272	2024-11-21 13:32	2019-11-22	Show	GitHub Exploit DB Packet Storm

222636	7.8	HIGH Local	zohocorp	manageengine_firewall_analyzer manageengine_opmanager	Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting…	CWE-276 Incorrect Default Permissions	CVE-2019-17421	2024-11-21 13:32	2019-11-22	Show	GitHub Exploit DB Packet Storm

222637	7.8	HIGH Local	comodo	comodo_internet_security	An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially u…	CWE-427 Uncontrolled Search Path Element	CVE-2019-18215	2024-11-21 13:32	2019-11-19	Show	GitHub Exploit DB Packet Storm

222638	4.6	MEDIUM Physics	espressif	esp32-d0wd_firmware esp32-d2wd_firmware esp32-s0wd_firmware esp32-pico-d4_firmware	An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker (with physical …	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-17391	2024-11-21 13:32	2019-11-15	Show	GitHub Exploit DB Packet Storm

222639	9.8	CRITICAL Network	fujielectric	v-server	In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer overflows have been identified, which may allow an attacker to remotely execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2019-18240	2024-11-21 13:32	2019-11-14	Show	GitHub Exploit DB Packet Storm

222640	6.1	MEDIUM Network	adenion	blog2social	The Blog2Social plugin before 5.9.0 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the b2s_id parameter.…	CWE-79 Cross-site Scripting	CVE-2019-17550	2024-11-21 13:32	2019-11-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed