Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257241 9.3 危険 マイクロソフト - Microsoft Internet Explorer において任意のコードが実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0249 2010-02-19 14:21 2010-01-15 Show GitHub Exploit DB Packet Storm
257242 7.5 危険 アップル
MySQL AB		 - MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-0227 2010-02-19 11:37 2008-01-10 Show GitHub Exploit DB Packet Storm
257243 7.5 危険 アップル
MySQL AB		 - MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0226 2010-02-19 11:32 2008-01-10 Show GitHub Exploit DB Packet Storm
257244 7.5 危険 Linux
レッドハット		 - Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性 - CVE-2006-6304 2010-02-18 14:28 2006-12-14 Show GitHub Exploit DB Packet Storm
257245 7.8 危険 Linux
レッドハット		 - Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4272 2010-02-18 14:28 2010-01-19 Show GitHub Exploit DB Packet Storm
257246 9.3 危険 レッドハット
リアルネットワークス		 - Realnetworks RealPlayer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4248 2010-02-17 11:48 2010-01-19 Show GitHub Exploit DB Packet Storm
257247 9.3 危険 リアルネットワークス - Realnetworks RealPlayer における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4246 2010-02-17 11:48 2010-01-19 Show GitHub Exploit DB Packet Storm
257248 9.3 危険 レッドハット
リアルネットワークス		 - Realnetworks RealPlayer の smlrender.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4257 2010-02-17 11:48 2010-01-19 Show GitHub Exploit DB Packet Storm
257249 9.3 危険 レッドハット
リアルネットワークス		 - Realnetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4245 2010-02-17 11:48 2010-01-19 Show GitHub Exploit DB Packet Storm
257250 9.3 危険 リアルネットワークス - Realnetworks RealPlayer における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4244 2010-02-17 11:48 2010-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222021 7.5 HIGH
Network 		mqtt-packet_project mqtt-packet A specifically malformed MQTT Subscribe packet crashes MQTT Brokers using the mqtt-packet module versions < 3.5.1, 4.0.0 - 4.1.3, 5.0.0 - 5.6.1, 6.0.0 - 6.1.2 for decoding. CWE-125
Out-of-bounds Read 		CVE-2019-5432 2024-11-21 13:44 2019-05-7 Show GitHub Exploit DB Packet Storm
222022 8.8 HIGH
Network 		ui unifi_video In UniFi Video 3.10.0 and prior, due to the lack of CSRF protection, it is possible to abuse the Web API to make changes on the server configuration without the user consent, requiring the attacker t… CWE-352
 Origin Validation Error 		CVE-2019-5430 2024-11-21 13:44 2019-05-7 Show GitHub Exploit DB Packet Storm
222023 9.8 CRITICAL
Network 		revive-sas revive_adserver An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize() call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability c… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-5434 2024-11-21 13:44 2019-05-7 Show GitHub Exploit DB Packet Storm
222024 5.4 MEDIUM
Network 		twitter twitter_kit This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions 3.0 to 3.4.0 is vulnerable to a callback verification flaw in the "Login with Twitter" component allo… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-5431 2024-11-21 13:44 2019-05-7 Show GitHub Exploit DB Packet Storm
222025 7.8 HIGH
Local 		filezilla-project
debian
fedoraproject 		filezilla_client
debian_linux
fedora 		Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory. CWE-426
 Untrusted Search Path 		CVE-2019-5429 2024-11-21 13:44 2019-04-30 Show GitHub Exploit DB Packet Storm
222026 7.5 HIGH
Network 		mchange
fedoraproject
oracle 		c3p0
fedora
retail_xstore_point_of_service
flexcube_private_banking
webcenter_sites
communications_ip_service_activator
hyperion_infrastructure_technology
enterprise_manager_ops_… 		c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration. CWE-776
XML Entity Expansion 		CVE-2019-5427 2024-11-21 13:44 2019-04-23 Show GitHub Exploit DB Packet Storm
222027 7.5 HIGH
Network 		qemu qemu hw/sparc64/sun4u.c in QEMU 3.1.50 is vulnerable to a NULL pointer dereference, which allows the attacker to cause a denial of service via a device driver. CWE-476
 NULL Pointer Dereference 		CVE-2019-5008 2024-11-21 13:44 2019-04-20 Show GitHub Exploit DB Packet Storm
222028 7.6 HIGH
Physics 		capsuletech smartlinx_neuron_2_firmware A restricted environment escape vulnerability exists in the “kiosk mode” function of Capsule Technologies SmartLinx Neuron 2 medical information collection devices running versions 9.0.3 or lower. A … NVD-CWE-noinfo
CVE-2019-5024 2024-11-21 13:44 2019-04-12 Show GitHub Exploit DB Packet Storm
222029 4.8 MEDIUM
Network 		ui edgeswitch_x In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" (SOCKS proxy) functionalities. Remote attackers without c… CWE-287
Improper Authentication 		CVE-2019-5426 2024-11-21 13:44 2019-04-11 Show GitHub Exploit DB Packet Storm
222030 8.8 HIGH
Network 		ui edgeswitch_x In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an authenticated user can execute arbitrary shell commands over the SSH interface bypassing the CLI interface, which allow them to escalate privile… CWE-78
OS Command  		CVE-2019-5425 2024-11-21 13:44 2019-04-11 Show GitHub Exploit DB Packet Storm