Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228081 1.9 注意 VMware
Linux
レッドハット		 - Linux kernel の bluetooth サブシステムにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2492 2012-12-20 13:45 2011-07-28 Show GitHub Exploit DB Packet Storm
228082 6.9 警告 VMware
Linux
レッドハット		 - Linux kernel の agp_generic_remove_memory 関数におけるサービス運用妨害 (システムクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2022 2012-12-20 13:41 2011-05-9 Show GitHub Exploit DB Packet Storm
228083 7.2 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の drivers/scsi/mpt2sas/mpt2sas_ctl.c における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1495 2012-12-20 13:39 2011-05-3 Show GitHub Exploit DB Packet Storm
228084 6.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の _ctl_do_mpt_command 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1494 2012-12-20 12:30 2011-05-3 Show GitHub Exploit DB Packet Storm
228085 1.2 注意 Boat Browser - Boat Browser および Boat Browser Mini における WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-5179 2012-12-20 12:01 2012-12-20 Show GitHub Exploit DB Packet Storm
228086 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer SP におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5691 2012-12-20 11:50 2012-12-14 Show GitHub Exploit DB Packet Storm
228087 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer SP における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5690 2012-12-20 11:45 2012-12-14 Show GitHub Exploit DB Packet Storm
228088 7.2 危険 シマンテック - Symantec Enterprise Security Manager における権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-4350 2012-12-20 11:38 2012-12-13 Show GitHub Exploit DB Packet Storm
228089 9.3 危険 マイクロソフト - Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1847 2012-12-19 18:49 2012-05-8 Show GitHub Exploit DB Packet Storm
228090 10 危険 サン・マイクロシステムズ
VMware
日立
ヒューレット・パッカード
レッドハット		 - 複数の Oracle 製品の 2D コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3566 2012-12-19 18:15 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248301 - - - An IDOR (Insecure Direct Object Reference) vulnerability has been discovered in AbsysNet, affecting version 2.3.1. This vulnerability could allow a remote attacker to obtain the session of an unauthe… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-11318 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248302 - - - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Egebilgi Software Website Template allows SQL Injection.This issue affects Website Template: befo… CWE-89
SQL Injection 		CVE-2024-3370 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248303 - - - Firebase JavaScript SDK utilizes a "FIREBASE_DEFAULTS" cookie to store configuration data, including an "_authTokenSyncURL" field used for session synchronization. If this cookie field is preset via… - CVE-2024-11023 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248304 8.4 HIGH
Local 		- - A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of s… CWE-22
Path Traversal 		CVE-2020-26071 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248305 - - - OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. Prior to version 6.1.9, the regex validation used to prevent Introspecti… CWE-284
Improper Access Control 		CVE-2024-37155 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248306 7.1 HIGH
Network 		- - A low privileged remote attacker may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-41974 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248307 8.1 HIGH
Network 		- - A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead to an arbitrary file writes with root privileges. CWE-35
 Path Traversal: '.../...//' 		CVE-2024-41973 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248308 6.5 MEDIUM
Network 		- - A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges. CWE-35
 Path Traversal: '.../...//' 		CVE-2024-41972 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248309 8.1 HIGH
Network 		- - A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss. CWE-22
Path Traversal 		CVE-2024-41971 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm
248310 5.7 MEDIUM
Network 		- - A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-41970 2024-11-19 02:11 2024-11-18 Show GitHub Exploit DB Packet Storm