Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258721 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258722 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258723 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258724 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258725 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258726 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258727 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
258728 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
258729 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
258730 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194501 6.7 MEDIUM
Local 		hpe proliant_microserver_gen10_plus_firmware
proliant_ml30_gen10_server_firmware
proliant_dl20_gen10_server_firmware 		A potential local bypass of security restrictions vulnerability has been identified in HPE ProLiant DL20 Gen10, HPE ProLiant ML30 Gen10, and HPE ProLiant MicroServer Gen10 Plus server's system ROMs p… NVD-CWE-noinfo
CVE-2021-29213 2024-11-21 15:00 2021-11-1 Show GitHub Exploit DB Packet Storm
194502 9.8 CRITICAL
Network 		hp ilo_amplifier_pack A remote unauthenticated directory traversal security vulnerability has been identified in HPE iLO Amplifier Pack versions 1.80, 1.81, 1.90 and 1.95. The vulnerability could be remotely exploited to … CWE-22
Path Traversal 		CVE-2021-29212 2024-11-21 15:00 2021-11-1 Show GitHub Exploit DB Packet Storm
194503 6.1 MEDIUM
Network 		wpmailster wp_mailster WP Mailster 1.6.18.0 allows XSS when a victim opens a mail server's details in the mst_servers page, for a crafted server_host, server_name, or connection_parameter parameter. CWE-79
Cross-site Scripting 		CVE-2021-28975 2024-11-21 15:00 2021-10-22 Show GitHub Exploit DB Packet Storm
194504 6.5 MEDIUM
Network 		rconfig rconfig rConfig 3.9.6 is affected by a Local File Disclosure vulnerability. An authenticated user may successfully download any file on the server. CWE-22
Path Traversal 		CVE-2021-29006 2024-11-21 15:00 2021-10-11 Show GitHub Exploit DB Packet Storm
194505 8.8 HIGH
Network 		rconfig rconfig Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to ga… CWE-276
Incorrect Default Permissions  		CVE-2021-29005 2024-11-21 15:00 2021-10-11 Show GitHub Exploit DB Packet Storm
194506 8.8 HIGH
Network 		rconfig rconfig rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an… CWE-89
SQL Injection 		CVE-2021-29004 2024-11-21 15:00 2021-10-11 Show GitHub Exploit DB Packet Storm
194507 4.3 MEDIUM
Network 		silverstripe silverstripe Default SilverStripe GraphQL Server (aka silverstripe/graphql) 3.x through 3.4.1 permission checker not inherited by query subclass. CWE-863
 Incorrect Authorization 		CVE-2021-28661 2024-11-21 15:00 2021-10-8 Show GitHub Exploit DB Packet Storm
194508 7.6 HIGH
Physics 		xen
fedoraproject
debian 		xen
fedora
debian_linux 		PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically… CWE-269
 Improper Privilege Management 		CVE-2021-28702 2024-11-21 15:00 2021-10-6 Show GitHub Exploit DB Packet Storm
194509 5.4 MEDIUM
Network 		esri portal_for_arcgis Stored cross-site scripting (XSS) issue in Esri Portal for ArcGIS may allow a remote unauthenticated attacker to pass and store malicious strings in the home application. CWE-79
Cross-site Scripting 		CVE-2021-29110 2024-11-21 15:00 2021-10-2 Show GitHub Exploit DB Packet Storm
194510 6.1 MEDIUM
Network 		esri portal_for_arcgis A reflected XSS vulnerability in Esri Portal for ArcGIS version 10.9 and below may allow a remote attacker able to convince a user to click on a crafted link which could potentially execute arbitrary… CWE-79
Cross-site Scripting 		CVE-2021-29109 2024-11-21 15:00 2021-10-2 Show GitHub Exploit DB Packet Storm