Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 202861 | 7.8 |
重要
Local |
DELL EMC (旧 EMC Corporation) | - | EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における root アクセス権を取得される脆弱性 |
CWE-Other
その他 |
CVE-2016-0920 | 2016-09-27 15:51 | 2016-09-19 | Show | GitHub Exploit DB Packet Storm |
| 202862 | 9.8 |
緊急
Network |
DELL EMC (旧 EMC Corporation) | - | 複数の EMC VNX 製品の SMB サービスにおける任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-0917 | 2016-09-27 15:51 | 2016-09-19 | Show | GitHub Exploit DB Packet Storm |
| 202863 | 6.7 |
警告
Local |
DELL EMC (旧 EMC Corporation) | - | EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における root 権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-0905 | 2016-09-27 15:51 | 2016-09-19 | Show | GitHub Exploit DB Packet Storm |
| 202864 | 8.6 |
重要
Network |
DELL EMC (旧 EMC Corporation) | - | EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における暗号保護メカニズムを破られる脆弱性 |
CWE-200 CWE-310 |
CVE-2016-0904 | 2016-09-27 15:51 | 2016-09-19 | Show | GitHub Exploit DB Packet Storm |
| 202865 | 9.1 |
緊急
Network |
DELL EMC (旧 EMC Corporation) | - | EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition におけるクライアントになりすまされる脆弱性 |
CWE-200
情報漏えい |
CVE-2016-0903 | 2016-09-27 15:51 | 2016-09-19 | Show | GitHub Exploit DB Packet Storm |
| 202866 | 8.6 |
重要
Network |
- | HPE Performance Center および LoadRunner におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2016-4384 | 2016-09-27 15:12 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm | |
| 202867 | 8.3 |
重要
Network |
- | HPE Performance Center におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2016-4382 | 2016-09-27 15:12 | 2016-09-12 | Show | GitHub Exploit DB Packet Storm | |
| 202868 | 7.8 |
重要
Local |
OpenJPEG project Debian Fedora Project |
- | OpenJPEG の pi.c の opj_pi_create_decode 関数における整数オーバーフローの脆弱性 |
CWE-Other
その他 |
CVE-2016-7163 | 2016-09-27 15:00 | 2016-09-6 | Show | GitHub Exploit DB Packet Storm |
| 202869 | 9.8 |
緊急
Network |
OpenJPEG project Debian |
- | OpenJPEG の j2k.c の opj_j2k_write_mco 関数における脆弱性 |
CWE-Other
その他 |
CVE-2015-8871 | 2016-09-27 15:00 | 2015-07-7 | Show | GitHub Exploit DB Packet Storm |
| 202870 | 9.8 |
緊急
Network |
flex project Debian |
- | flex の yy_get_next_buffer 関数におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2016-6354 | 2016-09-27 14:33 | 2016-02-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 4, 2026, 4:17 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 291971 | 6.5 |
MEDIUM
Network |
micasaverde | veralite_firmware | Directory traversal vulnerability in cgi-bin/cmh/get_file.sh in MiCasaVerde VeraLite with firmware 1.5.408 allows remote authenticated users to read arbirary files via a .. (dot dot) in the filename … |
CWE-22
Path Traversal |
CVE-2013-4861 | 2024-11-21 10:56 | 2020-01-29 | Show | GitHub Exploit DB Packet Storm |
| 291972 | 6.1 |
MEDIUM
Network |
eucalyptus | eucalyptus_management_console | Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
CWE-79
Cross-site Scripting |
CVE-2013-4770 | 2024-11-21 10:56 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |
| 291973 | 6.1 |
MEDIUM
Network |
sensiolabs fedoraproject |
symfony fedora |
Symfony 2.0.X before 2.0.24, 2.1.X before 2.1.12, 2.2.X before 2.2.5, and 2.3.X before 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the … |
CWE-79
Cross-site Scripting |
CVE-2013-4752 | 2024-11-21 10:56 | 2020-01-3 | Show | GitHub Exploit DB Packet Storm |
| 291974 | 9.8 |
CRITICAL
Network |
o-dyn | collabtive | Collabtive 1.0 has incorrect access control |
CWE-269
Improper Privilege Management |
CVE-2013-5027 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291975 | 7.5 |
HIGH
Network |
vivotek |
ip7160_firmware ip7361_firmware ip8332_firmware |
Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream |
CWE-863
Incorrect Authorization |
CVE-2013-4985 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291976 | 9.8 |
CRITICAL
Network |
avtech | avn801_dvr_firmware | AVTECH AVN801 DVR has a security bypass via the administration login captcha |
CWE-287
Improper Authentication |
CVE-2013-4982 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291977 | 9.8 |
CRITICAL
Network |
hikvision | ds-2cd7153-e_firmware | Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials |
CWE-287
Improper Authentication |
CVE-2013-4976 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291978 | 8.8 |
HIGH
Network |
hikvision | ds-2cd7153-e_firmware | Hikvision DS-2CD7153-E IP Camera has Privilege Escalation |
CWE-269
Improper Privilege Management |
CVE-2013-4975 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291979 | 5.3 |
MEDIUM
Network |
karotz | api | Karotz API 12.07.19.00: Session Token Information Disclosure |
CWE-200
Information Exposure |
CVE-2013-4868 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |
| 291980 | 6.3 |
MEDIUM
Physics |
ea | karotz_smart_rabbit_firmware | Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking |
CWE-269
Improper Privilege Management |
CVE-2013-4867 | 2024-11-21 10:56 | 2019-12-28 | Show | GitHub Exploit DB Packet Storm |