Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255411	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4085	2010-11-17 16:50	2010-10-28	Show	GitHub Exploit DB Packet Storm

255412	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4084	2010-11-17 16:50	2010-10-28	Show	GitHub Exploit DB Packet Storm

255413	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3655	2010-11-17 16:49	2010-10-28	Show	GitHub Exploit DB Packet Storm

255414	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の TextXtra.x32 におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2582	2010-11-17 16:49	2010-10-28	Show	GitHub Exploit DB Packet Storm

255415	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2581	2010-11-17 16:48	2010-10-28	Show	GitHub Exploit DB Packet Storm

255416	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player に脆弱性	CWE-119 バッファエラー	CVE-2010-3653	2010-11-16 14:49	2010-10-25	Show	GitHub Exploit DB Packet Storm

255417	7.5	危険	富士通	-	Interstage Application Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6258	2010-11-16 14:48	2008-02-19	Show	GitHub Exploit DB Packet Storm

255418	6.5	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1848	2010-11-15 16:20	2010-05-5	Show	GitHub Exploit DB Packet Storm

255419	5	警告	サイバートラスト株式会社 Zabbix	-	Zabbix サーバの trapper/trapper.c 内にある process_trap 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4500	2010-11-15 15:41	2009-07-21	Show	GitHub Exploit DB Packet Storm

255420	9.3	危険	サイバートラスト株式会社 Zabbix	-	Zabbix Agent の net.c 内にある NET_TCP_LISTEN 関数における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4502	2010-11-15 15:41	2009-09-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220501	8.1	HIGH Network	dell	emc_networking_os10	Dell EMC Networking OS10 versions prior to 10.4.3 contain a cryptographic key vulnerability due to an underlying application using undocumented, pre-installed X.509v3 key/certificate pairs. An unauth…	CWE-798 Use of Hard-coded Credentials	CVE-2019-3710	2024-11-21 13:42	2019-03-29	Show	GitHub Exploit DB Packet Storm

220502	7.2	HIGH Network	redhat	ansible_tower	When running Tower before 3.4.3 on OpenShift or Kubernetes, application credentials are exposed to playbook job runs via environment variables. A malicious user with the ability to write playbooks co…	CWE-200 Information Exposure	CVE-2019-3869	2024-11-21 13:42	2019-03-28	Show	GitHub Exploit DB Packet Storm

220503	7.5	HIGH Network	gnu fedoraproject	gnutls fedora	A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A memory corruption (double free) vulnerability in the certificate verification API. Any client or server application that verifi…	CWE-415 CWE-416 Double Free Use After Free	CVE-2019-3829	2024-11-21 13:42	2019-03-28	Show	GitHub Exploit DB Packet Storm

220504	6.1	MEDIUM Network	mod_auth_mellon_project fedoraproject redhat canonical	mod_auth_mellon fedora enterprise_linux ubuntu_linux	A vulnerability was found in mod_auth_mellon before v0.14.2. An open redirect in the logout URL allows requests with backslashes to pass through by assuming that it is a relative URL, while the brows…	CWE-601 Open Redirect	CVE-2019-3877	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220505	4.8	MEDIUM Network	moodle	moodle	A vulnerability was found in moodle before versions 3.6.3, 3.5.5, 3.4.8 and 3.1.17. Users with the "login as other users" capability (such as administrators/managers) can access other users' Dashboar…	CWE-79 Cross-site Scripting	CVE-2019-3847	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220506	6.3	MEDIUM Network	redhat opensuse	libvirt leap	A NULL pointer dereference flaw was discovered in libvirt before version 5.0.0 in the way it gets interface information through the QEMU agent. An attacker in a guest VM can use this flaw to crash li…	CWE-476 NULL Pointer Dereference	CVE-2019-3840	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220507	4.2	MEDIUM Local	redhat	ansible	Ansible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outside of the specified destination in the local ansible cont…	CWE-22 Path Traversal	CVE-2019-3828	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220508	7.5	HIGH Network	ceph canonical	civetweb ubuntu_linux	A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaus…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2019-3821	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220509	8.8	HIGH Network	rpm	libcomps	A use-after-free flaw has been discovered in libcomps before version 0.1.10 in the way ObjMRTrees are merged. An attacker, who is able to make an application read a crafted comps XML file, may be abl…	CWE-416 Use After Free	CVE-2019-3817	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm

220510	6.8	MEDIUM Network	dovecot canonical opensuse	dovecot ubuntu_linux leap	It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid certificate with an empty username field could …	CWE-295 Improper Certificate Validation	CVE-2019-3814	2024-11-21 13:42	2019-03-27	Show	GitHub Exploit DB Packet Storm