Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256201	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-1565	2010-05-7 17:26	2010-04-9	Show	GitHub Exploit DB Packet Storm

256202	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1564	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256203	10	危険	VMware	-	VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2009-3732	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256204	7.2	危険	VMware	-	複数の VMware 製品の vmrun における権限昇格の脆弱性	CWE-134 書式文字列の問題	CVE-2010-1139	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256205	5	警告	VMware	-	複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1138	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256206	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1142	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256207	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256208	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

256209	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

256210	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2005-4268	2010-05-7 16:51	2005-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223431	8.8	HIGH Network	sagemcom netgear technicolor compal	f\@st_3890_firmware f\@st_3686_firmware cg3700emr_firmware c6250emr_firmware tc7230_steb_firmware 7284e_firmware 7486e_firmware	Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's …	CWE-120 Classic Buffer Overflow	CVE-2019-19494	2024-11-21 13:34	2020-01-9	Show	GitHub Exploit DB Packet Storm

223432	9.8	CRITICAL Network	technicolor	tc7230_steb_firmware	The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. The attacker c…	CWE-20 Improper Input Validation	CVE-2019-19495	2024-11-21 13:34	2020-01-9	Show	GitHub Exploit DB Packet Storm

223433	7.8	HIGH Local	broadcom	ca_automic_dollar_universe	CA Automic Dollar Universe 5.3.3 contains a vulnerability, related to the uxdqmsrv binary being setuid root, that allows local attackers to elevate privileges. This vulnerability was reported to CA s…	CWE-269 Improper Privilege Management	CVE-2019-19544	2024-11-21 13:34	2020-01-9	Show	GitHub Exploit DB Packet Storm

223434	9.8	CRITICAL Network	broadcom	ca_automic_sysload	CA Automic Sysload 5.6.0 through 6.1.2 contains a vulnerability, related to a lack of authentication on the File Server port, that potentially allows remote attackers to execute arbitrary commands.	CWE-287 Improper Authentication	CVE-2019-19518	2024-11-21 13:34	2020-01-9	Show	GitHub Exploit DB Packet Storm

223435	7.8	HIGH Local	rconfig	rconfig	An issue was discovered in rConfig 3.9.3. The install script updates the /etc/sudoers file for rconfig specific tasks. After an "rConfig specific Apache configuration" update, apache has high privile…	CWE-269 Improper Privilege Management	CVE-2019-19585	2024-11-21 13:34	2020-01-7	Show	GitHub Exploit DB Packet Storm

223436	8.8	HIGH Network	rconfig	rconfig	An issue was discovered in rConfig 3.9.3. A remote authenticated user can directly execute system commands by sending a GET request to ajaxArchiveFiles.php because the path parameter is passed to the…	CWE-78 OS Command	CVE-2019-19509	2024-11-21 13:34	2020-01-7	Show	GitHub Exploit DB Packet Storm

223437	6.1	MEDIUM Network	icewarp	mail_server	IceWarp WebMail Server 12.2.0 and 12.1.x before 12.2.1.1 (and probably earlier versions) allows XSS (issue 1 of 2) in notes for contacts.	CWE-79 Cross-site Scripting	CVE-2019-19265	2024-11-21 13:34	2020-01-6	Show	GitHub Exploit DB Packet Storm

223438	5.4	MEDIUM Network	icewarp	mail_server	IceWarp WebMail Server 12.2.0 and 12.1.x before 12.2.1.1 (and probably earlier versions) allows XSS (issue 2 of 2) in notes for objects.	CWE-79 Cross-site Scripting	CVE-2019-19266	2024-11-21 13:34	2020-01-6	Show	GitHub Exploit DB Packet Storm

223439	7.5	HIGH Network	gitlab	gitlab	GitLab EE 8.4 through 12.5, 12.4.3, and 12.3.6 stored several tokens in plaintext.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2019-19314	2024-11-21 13:34	2020-01-6	Show	GitHub Exploit DB Packet Storm

223440	7.5	HIGH Network	gitlab	gitlab	GitLab EE 12.3 through 12.5, 12.4.3, and 12.3.6 allows Denial of Service. Certain characters were making it impossible to create, edit, or view issues and commits.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-19313	2024-11-21 13:34	2020-01-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed