Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257091	5	警告	VMware	-	VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2968	2010-03-24 12:22	2009-08-31	Show	GitHub Exploit DB Packet Storm

257092	4	警告	VMware	-	複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1805	2010-03-24 12:22	2009-05-28	Show	GitHub Exploit DB Packet Storm

257093	6.8	警告	VMware	-	複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-1244	2010-03-24 12:21	2009-04-10	Show	GitHub Exploit DB Packet Storm

257094	7.2	危険	VMware	-	複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性	CWE-noinfo 情報不足	CVE-2009-1147	2010-03-24 12:21	2009-04-3	Show	GitHub Exploit DB Packet Storm

257095	4.9	警告	VMware	-	複数の VMware 製品の ioctl におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-1146	2010-03-23 14:11	2010-04-3	Show	GitHub Exploit DB Packet Storm

257096	6.8	警告	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0910	2010-03-23 14:11	2010-04-3	Show	GitHub Exploit DB Packet Storm

257097	9.3	危険	VMware	-	複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0909	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

257098	6.4	警告	VMware	-	VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性	CWE-noinfo 情報不足	CVE-2009-0908	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

257099	2.1	注意	VMware	-	複数の VMware 製品の VI Client におけるパスワードを取得される脆弱性	CWE-200 情報漏えい	CVE-2009-0518	2010-03-23 14:10	2010-04-3	Show	GitHub Exploit DB Packet Storm

257100	4.4	警告	KVM レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0419	2010-03-23 14:09	2010-03-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195141	9.8	CRITICAL Network	portkiller_project	portkiller	This affects all versions of package portkiller. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process ex…	CWE-78 OS Command	CVE-2021-23379	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195142	9.8	CRITICAL Network	picotts_project	picotts	This affects all versions of package picotts. If attacker-controlled user input is given to the say function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c…	CWE-78 OS Command	CVE-2021-23378	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195143	9.8	CRITICAL Network	onion-oled-js_project	onion-oled-js	This affects all versions of package onion-oled-js. If attacker-controlled user input is given to the scroll function, it is possible for an attacker to execute arbitrary commands. This is due to use…	CWE-78 OS Command	CVE-2021-23377	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195144	9.8	CRITICAL Network	ffmpegdotjs_project	ffmpegdotjs	This affects all versions of package ffmpegdotjs. If attacker-controlled user input is given to the trimvideo function, it is possible for an attacker to execute arbitrary commands. This is due to us…	CWE-78 OS Command	CVE-2021-23376	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195145	9.8	CRITICAL Network	psnode_project	psnode	This affects all versions of package psnode. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c…	CWE-78 OS Command	CVE-2021-23375	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195146	9.8	CRITICAL Network	ps-visitor_project	ps-visitor	This affects all versions of package ps-visitor. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of t…	CWE-78 OS Command	CVE-2021-23374	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195147	7.0	HIGH Local	linux fedoraproject debian netapp broadcom	linux_kernel fedora debian_linux cloud_backup solidfire_\&_hci_management_node brocade_fabric_operating_system h410c_firmware h300s_firmware h500s_firmware h700s_firmwa…	A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_des…	CWE-362 Race Condition	CVE-2021-23133	2024-11-21 14:51	2021-04-23	Show	GitHub Exploit DB Packet Storm

195148	7.5	HIGH Network	mongo-express_project	mongo-express	All versions of package mongo-express are vulnerable to Denial of Service (DoS) when exporting an empty collection as CSV, due to an unhandled exception, leading to a crash.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2021-23372	2024-11-21 14:51	2021-04-14	Show	GitHub Exploit DB Packet Storm

195149	10.0	CRITICAL Network	eaton	intelligent_power_manager	Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vulnerability. IPM software does not sanitize the date provided via coverterCheckList action…	CWE-94 Code Injection	CVE-2021-23281	2024-11-21 14:51	2021-04-14	Show	GitHub Exploit DB Packet Storm

195150	9.9	CRITICAL Network	eaton	intelligent_power_manager intelligent_power_manager_virtual_appliance intelligent_power_protector	Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file upload vulnerability. IPM’s maps_srv.js allows an attacker to upload a malicious NodeJS file using up…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-23280	2024-11-21 14:51	2021-04-14	Show	GitHub Exploit DB Packet Storm