Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257081	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257082	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257083	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257084	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257085	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257086	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195141	4.9	MEDIUM Network	huawei	ips_module_firmware ngfw_module_firmware nip6300_firmware nip6600_firmware secospace_usg6300_firmware secospace_usg6500_firmware secospace_usg6600_firmware	There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations.…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-22341	2024-11-21 14:49	2021-06-30	Show	GitHub Exploit DB Packet Storm

195142	4.9	MEDIUM Network	huawei	s12700_firmware s1700_firmware s2700_firmware s5700_firmware s6700_firmware s7700_firmware s9700_firmware	There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to …	NVD-CWE-noinfo	CVE-2021-22329	2024-11-21 14:49	2021-06-30	Show	GitHub Exploit DB Packet Storm

195143	7.8	HIGH Local	poweriso	poweriso	A memory corruption vulnerability exists in the DMG File Format Handler functionality of PowerISO 7.9. A specially crafted DMG file can lead to an out-of-bounds write. An attacker can provide a malic…	CWE-787 Out-of-bounds Write	CVE-2021-21871	2024-11-21 14:49	2021-06-30	Show	GitHub Exploit DB Packet Storm

195144	4.1	MEDIUM Local	huawei	manageone smc2.0	There is a multiple threads race condition vulnerability in Huawei product. A race condition exists for concurrent I/O read by multiple threads. An attacker with the root permission can exploit this …	CWE-362 Race Condition	CVE-2021-22340	2024-11-21 14:49	2021-06-30	Show	GitHub Exploit DB Packet Storm

195145	7.5	HIGH Network	vmware oracle	spring_security communications_cloud_native_core_policy	Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5.3.x prior to 5.3.10 and 5.2.x prior to 5.2.11 are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Auth…	CWE-863 Incorrect Authorization	CVE-2021-22119	2024-11-21 14:49	2021-06-30	Show	GitHub Exploit DB Packet Storm

195146	9.1	CRITICAL Network	moodle	moodle	A command execution vulnerability exists in the default legacy spellchecker plugin in Moodle 3.10. A specially crafted series of HTTP requests can lead to command execution. An attacker must have adm…	CWE-78 OS Command	CVE-2021-21809	2024-11-21 14:49	2021-06-24	Show	GitHub Exploit DB Packet Storm

195147	7.8	HIGH Local	vmware	remote_console app_volumes tools	VMware Tools for Windows (11.x.y prior to 11.2.6), VMware Remote Console for Windows (12.x prior to 12.0.1) , VMware App Volumes (2.x prior to 2.18.10 and 4 prior to 2103) contain a local privilege e…	CWE-427 Uncontrolled Search Path Element	CVE-2021-21999	2024-11-21 14:49	2021-06-23	Show	GitHub Exploit DB Packet Storm

195148	9.8	CRITICAL Network	vmware	carbon_black_app_control	VMware Carbon Black App Control 8.0, 8.1, 8.5 prior to 8.5.8, and 8.6 prior to 8.6.2 has an authentication bypass. A malicious actor with network access to the VMware Carbon Black App Control managem…	CWE-287 Improper Authentication	CVE-2021-21998	2024-11-21 14:49	2021-06-23	Show	GitHub Exploit DB Packet Storm

195149	7.5	HIGH Network	huawei	ecns280_td_firmware	There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improp…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-22363	2024-11-21 14:49	2021-06-23	Show	GitHub Exploit DB Packet Storm

195150	4.9	MEDIUM Network	huawei	ips_module_firmware ngfw_module_firmware semg9811_firmware usg9500_firmware	There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some oper…	NVD-CWE-noinfo	CVE-2021-22342	2024-11-21 14:49	2021-06-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed