Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241191	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager の SIPStationInit 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-2837	2012-06-26 16:19	2010-08-25	Show	GitHub Exploit DB Packet Storm

241192	9	危険	シスコシステムズ	-	Cisco WCS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2826	2012-06-26 16:19	2010-08-11	Show	GitHub Exploit DB Packet Storm

241193	7.8	危険	シスコシステムズ	-	Cisco ACE モジュールの SIP インスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2825	2012-06-26 16:19	2010-08-11	Show	GitHub Exploit DB Packet Storm

241194	7.8	危険	シスコシステムズ	-	Cisco ACE モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2824	2012-06-26 16:19	2010-08-11	Show	GitHub Exploit DB Packet Storm

241195	7.8	危険	シスコシステムズ	-	Cisco ACE 4710 のディープパケットインスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2823	2012-06-26 16:19	2010-08-11	Show	GitHub Exploit DB Packet Storm

241196	7.8	危険	シスコシステムズ	-	Cisco ACE モジュールの RTSP インスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2822	2012-06-26 16:19	2010-08-11	Show	GitHub Exploit DB Packet Storm

241197	7.1	危険	シスコシステムズ	-	Cisco FWSM におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2821	2012-06-26 16:19	2010-08-4	Show	GitHub Exploit DB Packet Storm

241198	7.8	危険	シスコシステムズ	-	Cisco FWSM の SunRPC インスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2820	2012-06-26 16:19	2010-08-4	Show	GitHub Exploit DB Packet Storm

241199	7.8	危険	シスコシステムズ	-	Cisco FWSM の SunRPC インスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2819	2012-06-26 16:19	2010-08-4	Show	GitHub Exploit DB Packet Storm

241200	7.8	危険	シスコシステムズ	-	Cisco FWSM の SunRPC インスペクション機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2818	2012-06-26 16:19	2010-08-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266871	6.1	MEDIUM Network	sap	netweaver	Multiple cross-site scripting (XSS) vulnerabilities in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via vectors related to the (1) Runtime Workbench (RWB) or (2) Pm…	CWE-79 Cross-site Scripting	CVE-2016-1911	2024-11-21 11:47	2016-01-16	Show	GitHub Exploit DB Packet Storm

266872	5.3	MEDIUM Network	sap	netweaver	The User Management Engine (UME) in SAP NetWeaver 7.4 allows attackers to decrypt unspecified data via unknown vectors, aka SAP Security Note 2191290.	CWE-200 Information Exposure	CVE-2016-1910	2024-11-21 11:47	2016-01-16	Show	GitHub Exploit DB Packet Storm

266873	9.8	CRITICAL Network	fortinet	fortios	Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and FortiOS 4.1.x before 4.1.11, 4.2.x before 4.2.16, 4.3.x before 4.3.17 a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1909	2024-11-21 11:47	2016-01-16	Show	GitHub Exploit DB Packet Storm

266874	5.5	MEDIUM Local	ffmpeg canonical opensuse	ffmpeg ubuntu_linux leap	FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP reques…	CWE-200 Information Exposure	CVE-2016-1898	2024-11-21 11:47	2016-01-15	Show	GitHub Exploit DB Packet Storm

266875	5.5	MEDIUM Local	ffmpeg canonical opensuse	ffmpeg ubuntu_linux leap	FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request…	CWE-200 Information Exposure	CVE-2016-1897	2024-11-21 11:47	2016-01-15	Show	GitHub Exploit DB Packet Storm

266876	9.8	CRITICAL Network	debian	duck	duck before 0.10 did not properly handle loading of untrusted code from the current directory.	NVD-CWE-noinfo	CVE-2016-1239	2024-11-21 11:46	2022-02-20	Show	GitHub Exploit DB Packet Storm

266877	8.8	HIGH Network	lexmark	markvision_enterprise	Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization.	CWE-502 Deserialization of Untrusted Data	CVE-2016-1487	2024-11-21 11:46	2020-03-10	Show	GitHub Exploit DB Packet Storm

266878	3.3	LOW Local	nghttp2 fedoraproject	nghttp2 fedora	nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).	CWE-400 Uncontrolled Resource Consumption	CVE-2016-1544	2024-11-21 11:46	2020-02-7	Show	GitHub Exploit DB Packet Storm

266879	7.5	HIGH Network	microfocus	identity_manager	The ServiceNow driver in NetIQ Identity Manager versions prior to 4.6 are susceptible to an information disclosure vulnerability.	CWE-200 Information Exposure	CVE-2016-1600	2024-11-21 11:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

266880	7.5	HIGH Network	snapweb	snapweb	The Snapweb interface before version 0.21.2 was exposing controls to install or remove snap packages without controlling the identity of the user, nor the origin of the connection. An attacker could …	CWE-284 Improper Access Control	CVE-2016-1587	2024-11-21 11:46	2019-04-23	Show	GitHub Exploit DB Packet Storm