Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256311	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3131	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

256312	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3128	2010-01-5 16:17	2009-11-10	Show	GitHub Exploit DB Packet Storm

256313	9.3	危険	マイクロソフト	-	Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3127	2010-01-5 16:16	2009-11-10	Show	GitHub Exploit DB Packet Storm

256314	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

256315	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256316	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256317	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256318	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256319	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256320	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224771	9.8	CRITICAL Network	infradead fedoraproject debian canonical opensuse	openconnect fedora debian_linux ubuntu_linux leap	process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes.	CWE-120 Classic Buffer Overflow	CVE-2019-16239	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224772	8.2	HIGH Network	logmein	lastpass	LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted web site that captures the credentials for a victim's account on a previously visited web site, because do_popupregister can be …	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-16371	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224773	5.9	MEDIUM Network	gradle	gradle	The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-16370	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224774	9.8	CRITICAL Network	moddable	xs moddable	In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in xsAPI.c when called from fxRunDefine in xsRun.c, as demonstrated by crafted JavaScript code to xst.	CWE-787 Out-of-bounds Write	CVE-2019-16366	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224775	5.5	MEDIUM Local	beego	beego	The File Session Manager in Beego 1.10.0 allows local users to read session files because of weak permissions for individual files.	CWE-276 Incorrect Default Permissions	CVE-2019-16355	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224776	4.7	MEDIUM Local	beego	beego	The File Session Manager in Beego 1.10.0 allows local users to read session files because there is a race condition involving file creation within a directory with weak permissions.	CWE-362 CWE-732 Race Condition Incorrect Permission Assignment for Critical Resource	CVE-2019-16354	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224777	7.5	HIGH Network	geautomation	proficy	Emerson GE Automation Proficy Machine Edition 8.0 allows an access violation and application crash via crafted traffic from a remote device, as demonstrated by an RX7i device.	NVD-CWE-noinfo	CVE-2019-16353	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224778	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load() at jfif.c.	CWE-787 Out-of-bounds Write	CVE-2019-16352	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224779	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-18 has a NULL pointer dereference in huffman_decode_step() at huffman.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16351	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224780	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-18 has a NULL pointer dereference in idct2d8x8() at dct.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16350	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm