Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242301	7.5	危険	The PHP Group	-	PHP の php-wrapper.fcgi における保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2335	2012-07-26 17:07	2012-05-11	Show	GitHub Exploit DB Packet Storm

242302	7.5	危険	OpenOffice.org Project libwpd project	-	OpenOffice.org で使用される libwpd における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2012-2149	2012-07-26 16:59	2012-06-21	Show	GitHub Exploit DB Packet Storm

242303	4.3	警告	ISC, Inc.	-	ISC BIND の ns_client データ構造におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2012-3868	2012-07-26 16:27	2012-07-24	Show	GitHub Exploit DB Packet Storm

242304	7.1	危険	IBM	-	IBM DB2 の Java ストアドプロシージャのインフラストラクチャにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2197	2012-07-26 15:38	2012-06-14	Show	GitHub Exploit DB Packet Storm

242305	5	警告	IBM	-	IBM DB2 における任意の XML ファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-2196	2012-07-26 15:35	2012-06-14	Show	GitHub Exploit DB Packet Storm

242306	5	警告	IBM	-	IBM DB2 の SQLJ.DB2_INSTALL_JAR ストアドプロシージャにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-2194	2012-07-26 15:31	2012-06-7	Show	GitHub Exploit DB Packet Storm

242307	3.6	注意	Puppet	-	Puppet および Puppet Enterprise における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1989	2012-07-26 14:07	2012-06-27	Show	GitHub Exploit DB Packet Storm

242308	3.5	注意	Puppet	-	Puppet および Puppet Enterprise におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-1987	2012-07-26 13:57	2012-05-29	Show	GitHub Exploit DB Packet Storm

242309	10	危険	Google サムスン	-	複数の製品の Chromebook プラットフォーム上で稼働する Google Chrome OS における脆弱性	CWE-noinfo 情報不足	CVE-2012-4050	2012-07-26 11:57	2012-07-23	Show	GitHub Exploit DB Packet Storm

242310	2.1	注意	Puppet	-	Puppet および Puppet Enterprise における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1986	2012-07-25 17:54	2012-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266251	9.8	CRITICAL Network	huawei	uma	Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7109.	CWE-94 Code Injection	CVE-2016-7110	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266252	9.8	CRITICAL Network	huawei	uma	Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110.	CWE-94 Code Injection	CVE-2016-7109	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266253	6.5	MEDIUM Network	huawei	uma	Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user passwords via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-7108	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266254	7.5	HIGH Network	huawei	uma	Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affect system data integrity via unspecified vectors.	CWE-284 Improper Access Control	CVE-2016-7107	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266255	6.6	MEDIUM Local	huawei	e9000_chassis	XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary fi…	CWE-284 Improper Access Control	CVE-2016-6898	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266256	5.5	MEDIUM Local	huawei	rh1288_v3_server_firmware rh2288_v3_server_firmware rh2288h_v3_server_firmware xh620_v3_server_firmware xh622_v3_server_firmware xh628_v3_server_firmware rh5885_v3_server_firmware	The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with software before V100R003C00SPC617; RH2288H V3 servers…	CWE-399 Resource Management Errors	CVE-2016-6900	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266257	7.5	HIGH Network	huawei	rh5885_v3_server_firmware rh1288_v3_server_firmware rh2288_v3_server_firmware rh2288h_v3_server_firmware xh620_v3_server_firmware xh622_v3_server_firmware xh628_v3_server_firmware	The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, RH2288H V3 servers…	CWE-310 CWE-200 Cryptographic Issues Information Exposure	CVE-2016-6899	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266258	7.5	HIGH Network	f5	big-ip_local_traffic_manager big-ip_webaccelerator big-ip_application_acceleration_manager big-ip_global_traffic_manager big-ip_link_controller big-ip_advanced_firewall_manager big-…	The RESOLV::lookup iRule command in F5 BIG-IP LTM, APM, ASM, and Link Controller 10.2.1 through 10.2.4, 11.2.1, 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before 11.6.1, and 12.0.0 before HF3; BIG-IP A…	CWE-399 Resource Management Errors	CVE-2016-6876	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266259	8.8	HIGH Network	redhat	jboss_bpm_suite	The dashbuilder in Red Hat JBoss BPM Suite 6.3.2 does not properly handle CSRF tokens generated during an active session and includes them in query strings, which makes easier for remote attackers to…	CWE-352 Origin Validation Error	CVE-2016-7034	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm

266260	6.1	MEDIUM Network	redhat	jboss_bpm_suite	Multiple cross-site scripting (XSS) vulnerabilities in the admin pages in dashbuilder in Red Hat JBoss BPM Suite 6.3.2 allow remote attackers to inject arbitrary web script or HTML via unspecified ve…	CWE-79 Cross-site Scripting	CVE-2016-7033	2024-11-21 11:57	2016-09-8	Show	GitHub Exploit DB Packet Storm