Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255511	6.8	警告	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0910	2010-03-23 14:11	2010-04-3	Show	GitHub Exploit DB Packet Storm

255512	9.3	危険	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0909	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

255513	6.4	警告	VMware	-	VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性	CWE-noinfo 情報不足	CVE-2009-0908	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

255514	2.1	注意	VMware	-	複数の VMware 製品の VI Client におけるパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0518	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

255515	4.4	警告	KVM レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0419	2010-03-23 14:09	2010-03-1	Show	GitHub Exploit DB Packet Storm

255516	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0263	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

255517	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0262	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

255518	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0261	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

255519	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0260	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

255520	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0258	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218911	5.5	MEDIUM Local	huawei	mate_9_pro_fimware	Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361(C636) versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privi…	CWE-20 Improper Input Validation	CVE-2019-5244	2024-11-21 13:44	2019-06-5	Show	GitHub Exploit DB Packet Storm

218912	8.1	HIGH Network	revive-adserver	revive_adserver	Use of cryptographically weak PRNG in the password recovery token generation of Revive Adserver < v4.2.1 causes a potential authentication bypass attack if an attacker exploits the password recovery …	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2019-5440	2024-11-21 13:44	2019-05-29	Show	GitHub Exploit DB Packet Storm

218913	7.8	HIGH Local	haxx opensuse fedoraproject debian f5 netapp oracle	libcurl leap fedora debian_linux traffix_signaling_delivery_controller steelstore_cloud_integrated_storage solidfire hci_management_node enterprise_manager_ops_center mysql…	A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1.	CWE-787 Out-of-bounds Write	CVE-2019-5436	2024-11-21 13:44	2019-05-29	Show	GitHub Exploit DB Packet Storm

218914	3.7	LOW Network	haxx	curl	An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and including 7.64.1.	CWE-190 Integer Overflow or Wraparound	CVE-2019-5435	2024-11-21 13:44	2019-05-29	Show	GitHub Exploit DB Packet Storm

218915	5.3	MEDIUM Network	harpjs	harp	Path traversal using symlink in npm harp module versions <= 0.29.0.	CWE-59 Link Following	CVE-2019-5438	2024-11-21 13:44	2019-05-11	Show	GitHub Exploit DB Packet Storm

218916	5.3	MEDIUM Network	harpjs	harp	Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and…	CWE-200 Information Exposure	CVE-2019-5437	2024-11-21 13:44	2019-05-11	Show	GitHub Exploit DB Packet Storm

218917	8.1	HIGH Network	sqlite canonical	sqlite ubuntu_linux	An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially result…	CWE-416 Use After Free	CVE-2019-5018	2024-11-21 13:44	2019-05-11	Show	GitHub Exploit DB Packet Storm

218918	9.8	CRITICAL Network	gliderlabs opensuse f5	docker-alpine leap big-ip_controller	Versions of the Official Alpine Linux Docker images (since v3.3) contain a NULL password for the `root` user. This vulnerability appears to be the result of a regression introduced in December of 201…	NVD-CWE-Other	CVE-2019-5021	2024-11-21 13:44	2019-05-9	Show	GitHub Exploit DB Packet Storm

218919	6.5	MEDIUM Adjacent	wincofireworks	fw-1007_firmware	An exploitable improper access control vulnerability exists in the bluetooth low energy functionality of Winco Fireworks FireFly FW-1007 V2.0. An attacker can connect to the device to trigger this vu…	CWE-306 Missing Authentication for Critical Function	CVE-2019-5014	2024-11-21 13:44	2019-05-9	Show	GitHub Exploit DB Packet Storm

218920	5.4	MEDIUM Network	revive-adserver	revive_adserver	A user having access to the UI of a Revive Adserver instance could be tricked into clicking on a specifically crafted admin account-switch.php URL that would eventually lead them to another (unsafe) …	CWE-601 Open Redirect	CVE-2019-5433	2024-11-21 13:44	2019-05-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed