Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258721 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258722 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258723 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258724 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258725 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258726 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258727 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
258728 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
258729 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
258730 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195611 8.1 HIGH
Network 		netmotionsoftware netmotion_mobility NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in webrepdb StatusServlet. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-26915 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195612 8.1 HIGH
Network 		netmotionsoftware netmotion_mobility NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in MvcUtil valueStringToObject. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-26914 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195613 8.1 HIGH
Network 		netmotionsoftware netmotion_mobility NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in RpcServlet. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-26913 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195614 8.1 HIGH
Network 		netmotionsoftware netmotion_mobility NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in SupportRpcServlet. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-26912 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195615 7.0 HIGH
Local 		firejail_project
debian 		firejail
debian_linux 		Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2021-26910 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195616 6.5 MEDIUM
Network 		1password scim_bridge 1Password SCIM Bridge before 1.6.2 mishandles validation of authenticated requests for log files, leading to disclosure of a TLS private key. CWE-287
Improper Authentication 		CVE-2021-26905 2024-11-21 14:57 2021-02-9 Show GitHub Exploit DB Packet Storm
195617 5.5 MEDIUM
Local 		amd epyc_7003_firmware
epyc_7313_firmware
epyc_7313p_firmware
epyc_7343_firmware
epyc_7373x_firmware
epyc_73f3_firmware
epyc_7413_firmware
epyc_7443_firmware
epyc_7443p_firmware 		Improper input validation and bounds checking in SEV firmware may leak scratch buffer bytes leading to potential information disclosure. CWE-20
 Improper Input Validation  		CVE-2021-26404 2024-11-21 14:56 2023-01-11 Show GitHub Exploit DB Packet Storm
195618 7.8 HIGH
Local 		amd enterprise_driver
radeon_pro_software
radeon_software
radeon_rx_vega_56_firmware
radeon_rx_vega_64_firmware
ryzen_3_2200ge_firmware
ryzen_3_2200g_firmware
ryzen_5_2400ge_firmware… 		Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading … CWE-787
 Out-of-bounds Write 		CVE-2021-26392 2024-11-21 14:56 2022-11-10 Show GitHub Exploit DB Packet Storm
195619 4.9 MEDIUM
Network 		amd epyc_7h12_firmware
epyc_7f72_firmware
epyc_7f52_firmware
epyc_7f32_firmware
epyc_7742_firmware
epyc_7702p_firmware
epyc_7702_firmware
epyc_7662_firmware
epyc_7642_firmware
 Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service. CWE-125
Out-of-bounds Read 		CVE-2021-26345 2024-11-21 14:56 2023-11-15 Show GitHub Exploit DB Packet Storm
195620 7.8 HIGH
Local 		zscaler client_connector Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the PATH variable. A local adversary may be able to execute code with root privileges. CWE-426
 Untrusted Search Path 		CVE-2021-26738 2024-11-21 14:56 2023-10-23 Show GitHub Exploit DB Packet Storm