Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256721	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256722	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256723	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

256724	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

256725	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219931	7.8	HIGH Local	privoxy	privoxy	UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of privoxy on openSUSE Leap 15.1, Factory allows local attackers to escalate from user privoxy to root. This issue affects: openS…	-	CVE-2019-3699	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219932	7.8	HIGH Local	opensuse gnu	leap gnump3d	UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of gnump3d in openSUSE Leap 15.1 allows local attackers to escalate from user gnump3d to root. This issue affects: openSUSE Leap …	-	CVE-2019-3697	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219933	7.8	HIGH Local	opensuse suse	munin	A Symbolic Link (Symlink) Following vulnerability in the packaging of munin in openSUSE Factory, Leap 15.1 allows local attackers to escalate from user munin to root. This issue affects: openSUSE Fac…	-	CVE-2019-3694	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219934	7.8	HIGH Local	suse opensuse	mailman backports_sle	A symlink following vulnerability in the packaging of mailman in SUSE Linux Enterprise Server 11, SUSE Linux Enterprise Server 12; openSUSE Leap 15.1 allowed local attackers to escalate their privile…	-	CVE-2019-3693	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219935	7.8	HIGH Local	suse opensuse	inn leap backports_sle	The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enter…	-	CVE-2019-3692	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219936	3.3	LOW Local	suse	linux_enterprise_server	The permission package in SUSE Linux Enterprise Server allowed all local users to run dumpcap in the "easy" permission profile and sniff network traffic. This issue affects: SUSE Linux Enterprise Ser…	CWE-276 Incorrect Default Permissions	CVE-2019-3687	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219937	7.8	HIGH Local	opensuse	munge	A Symbolic Link (Symlink) Following vulnerability in the packaging of munge in SUSE Linux Enterprise Server 15; openSUSE Factory allowed local attackers to escalate privileges from user munge to root…	-	CVE-2019-3691	2024-11-21 13:42	2020-01-24	Show	GitHub Exploit DB Packet Storm

219938	8.8	HIGH Network	redhat	quay	A vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameter which is used as a CSRF token. The token is not refreshed…	CWE-352 Origin Validation Error	CVE-2019-3864	2024-11-21 13:42	2020-01-22	Show	GitHub Exploit DB Packet Storm

219939	6.1	MEDIUM Network	suse	openqa	openQA before commit c172e8883d8f32fced5e02f9b6faaacc913df27b was vulnerable to XSS in the distri and version parameter. This was reported through the bug bounty program of Offensive Security	CWE-79 Cross-site Scripting	CVE-2019-3686	2024-11-21 13:42	2020-01-17	Show	GitHub Exploit DB Packet Storm

219940	8.8	HIGH Network	suse hp	openstack_cloud keystone-json-assignment helion_openstack	The keystone-json-assignment package in SUSE Openstack Cloud 8 before commit d7888c75505465490250c00cc0ef4bb1af662f9f every user listed in the /etc/keystone/user-project-map.json was assigned full "m…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-3683	2024-11-21 13:42	2020-01-17	Show	GitHub Exploit DB Packet Storm