Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245781	4.3	警告	アップル	-	Apple Safari 6.0 未満で使用される WebKit における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3690	2012-07-27 12:18	2012-07-25	Show	GitHub Exploit DB Packet Storm

245782	5.8	警告	アップル	-	Apple Safari 6.0 未満で使用される WebKit における同一生成元ポリシーを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2012-3689	2012-07-27 12:16	2012-07-25	Show	GitHub Exploit DB Packet Storm

245783	4.3	警告	アップル	-	Apple Safari 6.0 未満における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0679	2012-07-27 12:02	2012-07-25	Show	GitHub Exploit DB Packet Storm

245784	4.3	警告	Opera Software ASA	-	Opera における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2012-1251	2012-07-26 17:30	2012-05-25	Show	GitHub Exploit DB Packet Storm

245785	9.3	危険	Google	-	Google Chrome における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2834	2012-07-26 17:30	2012-06-26	Show	GitHub Exploit DB Packet Storm

245786	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (不正なポインタの使用) の脆弱性	CWE-DesignError	CVE-2012-2830	2012-07-26 17:29	2012-06-26	Show	GitHub Exploit DB Packet Storm

245787	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-Other その他	CVE-2012-2826	2012-07-26 17:28	2012-06-26	Show	GitHub Exploit DB Packet Storm

245788	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2823	2012-07-26 17:27	2012-06-26	Show	GitHub Exploit DB Packet Storm

245789	7.5	危険	Google	-	Google Chrome の autofill におけるテキスト表示の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-2821	2012-07-26 17:27	2012-06-26	Show	GitHub Exploit DB Packet Storm

245790	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-2820	2012-07-26 17:27	2012-06-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252621	7.5	HIGH Network	apache	hadoop	In Apache Hadoop versions 3.0.0-alpha2 to 3.0.0, 2.9.0 to 2.9.2, 2.8.0 to 2.8.5, any users can access some servlets without authentication when Kerberos authentication is enabled and SPNEGO through H…	CWE-287 Improper Authentication	CVE-2018-11765	2024-11-21 12:43	2020-10-1	Show	GitHub Exploit DB Packet Storm

252622	5.4	MEDIUM Adjacent	puppet	puppet_server	Previous versions of Puppet Agent didn't verify the peer in the SSL connection prior to downloading the CRL. This issue is resolved in Puppet Agent 6.4.0.	CWE-295 Improper Certificate Validation	CVE-2018-11751	2024-11-21 12:43	2019-12-17	Show	GitHub Exploit DB Packet Storm

252623	7.5	HIGH Network	apache	hadoop	In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-11768	2024-11-21 12:43	2019-10-4	Show	GitHub Exploit DB Packet Storm

252624	9.8	CRITICAL Network	eventum_project	eventum	Controller/ListController.php in Eventum 3.5.0 is vulnerable to Deserialization of Untrusted Data. Fixed in version 3.5.2.	CWE-502 Deserialization of Untrusted Data	CVE-2018-11569	2024-11-21 12:43	2019-09-6	Show	GitHub Exploit DB Packet Storm

252625	8.1	HIGH Network	cloudera	cloudera_manager	Cloudera Manager through 5.15 has Incorrect Access Control.	CWE-284 Improper Access Control	CVE-2018-11744	2024-11-21 12:43	2019-07-11	Show	GitHub Exploit DB Packet Storm

252626	6.1	MEDIUM Network	e107	e107	In e107 v2.1.7, output without filtering results in XSS.	CWE-79 Cross-site Scripting	CVE-2018-11734	2024-11-21 12:43	2019-07-11	Show	GitHub Exploit DB Packet Storm

252627	9.8	CRITICAL Network	fasterxml redhat oracle	jackson-databind openshift_container_platform retail_customer_management_and_segmentation_foundation clusterware global_lifecycle_management_opatch utilities_advanced_spatial_and_opera…	An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5. Use of Jackson default typing along with a gadget class from iBatis allows exfiltration of content. Fixed in 2.7.9.4, 2.8.11…	CWE-502 Deserialization of Untrusted Data	CVE-2018-11307	2024-11-21 12:43	2019-07-10	Show	GitHub Exploit DB Packet Storm

252628	4.6	MEDIUM Network	otrs debian	otrs debian_linux	An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.7. A carefully constructed email could be used to inject and execute arbitrary stylesheet or JavaScript code in a logged…	NVD-CWE-noinfo	CVE-2018-11563	2024-11-21 12:43	2019-07-8	Show	GitHub Exploit DB Packet Storm

252629	9.8	CRITICAL Network	flowpaper	flexpaper	The Publish Service in FlexPaper (later renamed FlowPaper) 2.3.6 allows remote code execution via setup.php and change_config.php.	CWE-20 Improper Input Validation	CVE-2018-11686	2024-11-21 12:43	2019-07-4	Show	GitHub Exploit DB Packet Storm

252630	9.8	CRITICAL Network	moxa	oncell_g3470a-lte-us_firmware oncell_g3470a-lte-us-t_firmware oncell_g3470a-lte-eu_firmware oncell_g3470a-lte-eu-t_firmware	Memory corruption issue was discovered in Moxa OnCell G3470A-LTE Series version 1.6 Build 18021314 and prior, a different vulnerability than CVE-2018-11424.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-11425	2024-11-21 12:43	2019-07-4	Show	GitHub Exploit DB Packet Storm