Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224381 | 9.3 | 危険 | safer networking | - | Safer Networking FileAlyzer におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-4396 | 2012-12-20 18:52 | 2008-10-2 | Show | GitHub Exploit DB Packet Storm |
| 224382 | 4.3 | 警告 | ベリサイン | - | VeriSign Kontiki DMS におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4393 | 2012-12-20 18:52 | 2008-10-7 | Show | GitHub Exploit DB Packet Storm |
| 224383 | 9.3 | 危険 | simba technologies SAP |
- | SAP SAPgui の mdrmsap.dll における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-4387 | 2012-12-20 18:52 | 2008-11-10 | Show | GitHub Exploit DB Packet Storm |
| 224384 | 7.5 | 危険 | rianxosencabos cms | - | Rianxosencabos CMS における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-4244 | 2012-12-20 18:52 | 2008-09-25 | Show | GitHub Exploit DB Packet Storm |
| 224385 | 7.5 | 危険 | softacid | - | SoftAcid HRS の city.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4204 | 2012-12-20 18:52 | 2008-09-24 | Show | GitHub Exploit DB Packet Storm |
| 224386 | 6.9 | 警告 | レッドハット | - | cman の fence_egenera における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-4192 | 2012-12-20 18:52 | 2008-09-29 | Show | GitHub Exploit DB Packet Storm |
| 224387 | 10 | 危険 | TYPO3 Association | - | TYPO3 Secure Directory エクステンションにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-4188 | 2012-12-20 18:52 | 2008-09-23 | Show | GitHub Exploit DB Packet Storm |
| 224388 | 4.3 | 警告 | proactive cms | - | ProActive CMS の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-4187 | 2012-12-20 18:52 | 2008-09-23 | Show | GitHub Exploit DB Packet Storm |
| 224389 | 7.5 | 危険 | webcms | - | webCMS Portal Edition の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4186 | 2012-12-20 18:52 | 2008-09-23 | Show | GitHub Exploit DB Packet Storm |
| 224390 | 9.3 | 危険 | systemrequirementslab | - | Instant Expert Analysis で使用されている LLC Systems Requirements Lab における強制的にダウンロードされる脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-4385 | 2012-12-20 18:52 | 2008-10-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 20, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1651 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1652 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Los dispositivos afectados no autorizan apropiadamente la función change password de la interfaz web. Esto podría permitir a usuarios poco privilegiado escalar sus privilegios |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1653 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfi… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1654 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WPA, WPA2 y WPA3 reensamblan fragmentos con números de paquete no consecutivos. Un adversario… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1655 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and proces… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1656 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WEP, WPA, WPA2 y WPA3 aceptan segundos fragmentos de transmisión (o posteriores) incluso cuan… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1657 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC104… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1658 | 6.5 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas A-MSDU de texto plano siempre que los primeros 8 bytes corr… |
CWE-20
Improper Input Validation |
CVE-2020-26144 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1659 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adve… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1660 | 6.5 |
MEDIUM
Adjacent |
alfa arista siemens |
awus036h_firmware c-75_firmware o-90_firmware c-65_firmware w-68_firmware scalance_w700_ieee_802.11n_firmware |
Se detectó un problema en el controlador ALFA Windows 10 versión 1030.36.604 para AWUS036ACH. Las implementaciones WEP, WPA, WPA2 y WPA3 aceptan tramas de texto plano fragmentados en una red Wi-Fi pr… |
CWE-20
Improper Input Validation |
CVE-2020-26143 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |