Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250881 6.4 警告 シスコシステムズ - 複数の Cisco UVC System 製品の Web インターフェースにおけるセッションがハイジャックされる脆弱性 CWE-310
暗号の問題 		CVE-2010-4304 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
250882 4.9 警告 シスコシステムズ - Cisco UVC System 5110 および 5115 における暗号化されたパスワードファイルを発見される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-4303 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
250883 4.9 警告 シスコシステムズ - Cisco UVC System 5110 および 5115 の /opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2010-4302 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
250884 9.3 危険 Novell - Novell ZHM の ZfHIPCND.exe におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4299 2012-03-27 18:42 2010-11-2 Show GitHub Exploit DB Packet Storm
250885 7.5 危険 dustincowell - Free Simple Software の download モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4298 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
250886 7.5 危険 Artica ST - Pandora FMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4283 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250887 7.5 危険 Artica ST - Pandora FMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4282 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250888 7.5 危険 Artica ST - Pandora FMS の safe_url_extraclean 関数における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4281 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250889 7.5 危険 Artica ST - Pandora FMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4280 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250890 10 危険 Artica ST - Pandora FMS のディフォルト設定における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-4279 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277071 7.5 HIGH
Network 		fedoraproject
suse
redhat
debian
canonical
ntp 		fedora
manager_proxy
linux_enterprise_debuginfo
manager
linux_enterprise_server
openstack_cloud
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server 		The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands. CWE-20
 Improper Input Validation  		CVE-2015-5194 2024-11-21 11:32 2017-07-21 Show GitHub Exploit DB Packet Storm
277072 8.1 HIGH
Network 		theforeman foreman Foreman after 1.1 and before 1.9.0-RC1 does not redirect HTTP requests to HTTPS when the require_ssl setting is set to true, which allows remote attackers to obtain user credentials via a man-in-the-… CWE-200
Information Exposure 		CVE-2015-5152 2024-11-21 11:32 2017-07-17 Show GitHub Exploit DB Packet Storm
277073 7.5 HIGH
Network 		elasticsearch
elastic 		logstash Logstash 1.5.x before 1.5.3 and 1.4.x before 1.4.4 allows remote attackers to read communications between Logstash Forwarder agent and Logstash server. CWE-200
Information Exposure 		CVE-2015-5378 2024-11-21 11:32 2017-06-28 Show GitHub Exploit DB Packet Storm
277074 7.5 HIGH
Network 		canonical
gnu 		ubuntu_linux
glibc 		res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash). CWE-476
 NULL Pointer Dereference 		CVE-2015-5180 2024-11-21 11:32 2017-06-28 Show GitHub Exploit DB Packet Storm
277075 8.1 HIGH
Network 		cornelisnetworks opa-ff
opa-fm 		Race conditions in opa-fm before 10.4.0.0.196 and opa-ff before 10.4.0.0.197. CWE-362
Race Condition 		CVE-2015-5232 2024-11-21 11:32 2017-06-8 Show GitHub Exploit DB Packet Storm
277076 7.5 HIGH
Network 		apache cxf_fediz Application plugins in Apache CXF Fediz before 1.1.3 and 1.2.x before 1.2.1 allow remote attackers to cause a denial of service. CWE-20
 Improper Input Validation  		CVE-2015-5175 2024-11-21 11:32 2017-06-8 Show GitHub Exploit DB Packet Storm
277077 9.6 CRITICAL
Network 		vmware
debian 		spring_framework
debian_linux 		Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2.0 to 3.2.14 and older unsupported versions is vulnerable to a Reflected File Download (RFD) attack. The attack involves… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2015-5211 2024-11-21 11:32 2017-05-26 Show GitHub Exploit DB Packet Storm
277078 7.5 HIGH
Network 		teradata teradata_express
teradata_gateway 		Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database cr… CWE-20
 Improper Input Validation  		CVE-2015-5401 2024-11-21 11:32 2017-05-23 Show GitHub Exploit DB Packet Storm
277079 7.5 HIGH
Network 		roundcube roundcube_webmail
webmail 		Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory. CWE-200
Information Exposure 		CVE-2015-5383 2024-11-21 11:32 2017-05-23 Show GitHub Exploit DB Packet Storm
277080 6.5 MEDIUM
Network 		roundcube roundcube_webmail
webmail 		program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard. CWE-200
Information Exposure 		CVE-2015-5382 2024-11-21 11:32 2017-05-23 Show GitHub Exploit DB Packet Storm