Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258361 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3943 2011-01-17 14:38 2010-12-14 Show GitHub Exploit DB Packet Storm
258362 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3942 2011-01-17 14:35 2010-12-14 Show GitHub Exploit DB Packet Storm
258363 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3941 2011-01-17 14:29 2010-12-14 Show GitHub Exploit DB Packet Storm
258364 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
258365 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
258366 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
258367 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
258368 6.9 警告 マイクロソフト - Microsoft Windows における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3966 2011-01-14 15:42 2010-12-14 Show GitHub Exploit DB Packet Storm
258369 6.9 警告 マイクロソフト - Windows Media Encoder における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3965 2011-01-14 15:39 2010-12-14 Show GitHub Exploit DB Packet Storm
258370 6.9 警告 マイクロソフト - Microsoft Windows Movie Maker における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3967 2011-01-14 15:36 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212721 7.8 HIGH
Local 		xen
fedoraproject
opensuse
debian 		xen
fedora
leap
debian_linux 		An issue was discovered in Xen through 4.14.x. There are missing memory barriers when accessing/allocating an event channel. Event channels control structures can be accessed lockless as long as the … CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2020-25603 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212722 6.0 MEDIUM
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.14.x. An x86 PV guest can trigger a host OS crash when handling guest access to MSR_MISC_ENABLE. When a guest accesses certain Model Specific Registers, Xen f… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-25602 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212723 5.5 MEDIUM
Local 		xen
debian
fedoraproject
opensuse 		xen
debian_linux
fedora
leap 		An issue was discovered in Xen through 4.14.x. There is a lack of preemption in evtchn_reset() / evtchn_destroy(). In particular, the FIFO event channel model allows guests to have a large number of … NVD-CWE-noinfo
CVE-2020-25601 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212724 5.5 MEDIUM
Local 		xen
fedoraproject
opensuse
debian 		xen
fedora
leap
debian_linux 		An issue was discovered in Xen through 4.14.x. Out of bounds event channels are available to 32-bit x86 domains. The so called 2-level event channel model imposes different limits on the number of us… CWE-787
 Out-of-bounds Write 		CVE-2020-25600 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212725 7.0 HIGH
Local 		xen
fedoraproject
opensuse
debian 		xen
fedora
leap
debian_linux 		An issue was discovered in Xen through 4.14.x. There are evtchn_reset() race conditions. Uses of EVTCHNOP_reset (potentially by a guest on itself) or XEN_DOMCTL_soft_reset (by itself covered by XSA-7… CWE-119
CWE-362
Incorrect Access of Indexable Resource ('Range Error') 
Race Condition 		CVE-2020-25599 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212726 5.5 MEDIUM
Local 		xen
fedoraproject
opensuse 		xen
fedora
leap 		An issue was discovered in Xen 4.14.x. There is a missing unlock in the XENMEM_acquire_resource error path. The RCU (Read, Copy, Update) mechanism is a synchronisation primitive. A buggy error path i… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2020-25598 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212727 6.5 MEDIUM
Local 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.14.x. There is mishandling of the constraint that once-valid event channels may not turn invalid. Logic in the handling of event channel operations in Xen ass… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-25597 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212728 5.5 MEDIUM
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.14.x. x86 PV guest kernels can experience denial of service via SYSENTER. The SYSENTER instruction leaves various state sanitization activities to software. O… CWE-74
Injection 		CVE-2020-25596 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212729 7.8 HIGH
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.14.x. The PCI passthrough code improperly uses register data. Code paths in Xen's MSI handling have been identified that act on unsanitized values read back f… CWE-269
 Improper Privilege Management 		CVE-2020-25595 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
212730 6.1 MEDIUM
Network 		gon_project
debian
canonical 		gon
debian_linux
ubuntu_linux 		An issue was discovered in the gon gem before gon-6.4.0 for Ruby. MultiJson does not honor the escape_mode parameter to escape fields as an XSS protection mechanism. To mitigate, json_dumper.rb in go… CWE-79
Cross-site Scripting 		CVE-2020-25739 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm