Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 241701 | 7.8 | 危険 | DreamBox | - | Dreambox DM500C の Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-3936 | 2012-06-26 16:02 | 2008-09-5 | Show | GitHub Exploit DB Packet Storm |
| 241702 | 9.3 | 危険 | EZB Systems | - | UltraISO におけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2008-3871 | 2012-06-26 16:02 | 2009-04-1 | Show | GitHub Exploit DB Packet Storm |
| 241703 | 6.9 | 警告 | Debian | - | Citadel Server の migrate_aliases.sh における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-3930 | 2012-06-26 16:02 | 2008-08-24 | Show | GitHub Exploit DB Packet Storm |
| 241704 | 7.2 | 危険 | Ampache.org | - | Ampache の gather-messages.sh における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-3929 | 2012-06-26 16:02 | 2008-09-4 | Show | GitHub Exploit DB Packet Storm |
| 241705 | 6.9 | 警告 | Debian | - | Honeyd の test.sh における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-3928 | 2012-06-26 16:02 | 2008-08-24 | Show | GitHub Exploit DB Packet Storm |
| 241706 | 7.5 | 危険 | bitlbee | - | BitlBee における既存のアカウントを "再作成" される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-3920 | 2012-06-26 16:02 | 2008-09-4 | Show | GitHub Exploit DB Packet Storm |
| 241707 | 5.8 | 警告 | Django Software Foundation | - | Django の管理アプリケーションにおけるデータを削除される脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-3909 | 2012-06-26 16:02 | 2008-09-4 | Show | GitHub Exploit DB Packet Storm |
| 241708 | 3.5 | 注意 | trixbox Digium |
- | Asterisk Open Source における有効なユーザ名を列挙される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-3903 | 2012-06-26 16:02 | 2008-09-4 | Show | GitHub Exploit DB Packet Storm |
| 241709 | 2.1 | 注意 | マイクロソフト freed0m |
- | DiskCryptor における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-3897 | 2012-06-26 16:02 | 2008-09-3 | Show | GitHub Exploit DB Packet Storm |
| 241710 | 2.1 | 注意 | GNU Project | - | Grub Legacy における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-3896 | 2012-06-26 16:02 | 2008-09-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 267461 | 5.5 |
MEDIUM
Local |
suse libarchive |
linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive |
Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service via a tar file. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-8929 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267462 | 5.5 |
MEDIUM
Local |
canonical libarchive suse |
ubuntu_linux libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop |
The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. |
CWE-125
Out-of-bounds Read |
CVE-2015-8928 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267463 | 5.5 |
MEDIUM
Local |
libarchive | libarchive | The trad_enc_decrypt_update function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap read and crash) via a cra… |
CWE-125
Out-of-bounds Read |
CVE-2015-8927 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267464 | 5.5 |
MEDIUM
Local |
canonical suse libarchive |
ubuntu_linux linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive |
The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive. |
CWE-476
NULL Pointer Dereference |
CVE-2015-8926 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267465 | 5.5 |
MEDIUM
Local |
canonical libarchive suse |
ubuntu_linux libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop |
The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read) via a crafted mtree file, related to newlin… |
CWE-125
Out-of-bounds Read |
CVE-2015-8925 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267466 | 5.5 |
MEDIUM
Local |
libarchive novell canonical |
libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux |
The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafte… |
CWE-125
Out-of-bounds Read |
CVE-2015-8924 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267467 | 6.5 |
MEDIUM
Network |
libarchive novell canonical |
libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux |
The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file. |
CWE-20
Improper Input Validation |
CVE-2015-8923 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267468 | 5.5 |
MEDIUM
Local |
libarchive novell canonical oracle |
libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux linux |
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7… |
CWE-476
NULL Pointer Dereference |
CVE-2015-8922 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267469 | 7.5 |
HIGH
Network |
novell libarchive canonical |
suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit libarchive ubuntu_linux |
The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. |
CWE-125
Out-of-bounds Read |
CVE-2015-8921 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |
| 267470 | 5.5 |
MEDIUM
Local |
novell canonical libarchive |
suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux libarchive |
The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file. |
CWE-125
Out-of-bounds Read |
CVE-2015-8920 | 2024-11-21 11:39 | 2016-09-20 | Show | GitHub Exploit DB Packet Storm |