Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250981	5.8	警告	シマンテック	-	Symantec Endpoint Protection の Manager サービスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0294	2012-05-25 12:18	2012-05-22	Show	GitHub Exploit DB Packet Storm

250982	7.2	危険	シマンテック	-	Symantec Endpoint Protection および Symantec Network Access Control におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0289	2012-05-25 12:17	2012-05-22	Show	GitHub Exploit DB Packet Storm

250983	7.5	危険	ロジテック株式会社	-	LAN-W300N/R シリーズにおけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1250	2012-05-25 12:04	2012-05-25	Show	GitHub Exploit DB Packet Storm

250984	4.3	警告	Roundcube.net	-	Roundcube Webmail において任意のスクリプトが実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1253	2012-05-25 12:03	2012-05-25	Show	GitHub Exploit DB Packet Storm

250985	4.3	警告	サイベース	-	Sybase 製 EAServer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4340	2012-05-25 12:02	2012-05-25	Show	GitHub Exploit DB Packet Storm

250986	4.3	警告	RSSOwl	-	RSSOwl において任意のスクリプトが実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1252	2012-05-25 12:01	2012-05-25	Show	GitHub Exploit DB Packet Storm

250987	7.5	危険	SIRINI.NET	-	GR Board における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5091	2012-05-25 11:53	2012-05-24	Show	GitHub Exploit DB Packet Storm

250988	6.4	警告	SIRINI.NET	-	GR Board におけるデータを変更または削除される脆弱性	CWE-287 不適切な認証	CVE-2011-5090	2012-05-25 11:52	2012-05-24	Show	GitHub Exploit DB Packet Storm

250989	5	警告	Tornado	-	Tornado の tornado.web.RequestHandler.set_header 関数における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2374	2012-05-25 11:26	2012-05-23	Show	GitHub Exploit DB Packet Storm

250990	6.4	警告	Gliffy	-	Atlassian JIRA および Atlassian Confluence 用 Gliffy プラグインにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2928	2012-05-24 13:42	2012-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257131	6.1	MEDIUM Network	cisco	unified_computing_system_director	A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-ba…	CWE-79 Cross-site Scripting	CVE-2017-3868	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257132	6.1	MEDIUM Network	cisco	prime_service_catalog	A vulnerability in the web framework code of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web int…	CWE-79 Cross-site Scripting	CVE-2017-3866	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257133	6.5	MEDIUM Network	cisco	webex_meetings_server	An XML External Entity vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to have read access to part of the information stored in the affected system. More In…	CWE-611 XXE	CVE-2017-3811	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257134	5.8	MEDIUM Network	cisco	web_security_appliance	A vulnerability in the URL filtering feature of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to bypass a configured URL filter rule. A…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-3870	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257135	5.3	MEDIUM Network	cisco	adaptive_security_appliance_software	A vulnerability in the Border Gateway Protocol (BGP) Bidirectional Forwarding Detection (BFD) implementation of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote…	CWE-287 Improper Authentication	CVE-2017-3867	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257136	5.3	MEDIUM Network	cisco	telepresence_server_software	An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. Affected Products: This vulnerabil…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2017-3815	2024-11-21 12:26	2017-03-18	Show	GitHub Exploit DB Packet Storm

257137	8.8	HIGH Adjacent	cisco	wireless_lan_controller_firmware wireless_lan_controller_software	A vulnerability in the mesh code of Cisco Wireless LAN Controller (WLC) software could allow an unauthenticated, remote attacker to impersonate a WLC in a meshed topology. The vulnerability is due to…	CWE-287 Improper Authentication	CVE-2017-3854	2024-11-21 12:26	2017-03-16	Show	GitHub Exploit DB Packet Storm

257138	8.6	HIGH Network	cisco	tidal_enterprise_scheduler	A vulnerability in the Client Manager Server of Cisco Workload Automation and Cisco Tidal Enterprise Scheduler could allow an unauthenticated, remote attacker to retrieve any file from the Client Man…	CWE-20 Improper Input Validation	CVE-2017-3846	2024-11-21 12:26	2017-03-16	Show	GitHub Exploit DB Packet Storm

257139	9.8	CRITICAL Network	cisco	aironet_access_point_software	A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauthenticated, remote attacker to bypass authentication. The attacker could be granted full a…	CWE-287 Improper Authentication	CVE-2017-3831	2024-11-21 12:26	2017-03-16	Show	GitHub Exploit DB Packet Storm

257140	8.8	HIGH Network	cisco	asr_5000_series_software virtualized_packet_core	A privilege escalation vulnerability in the Secure Shell (SSH) subsystem in the StarOS operating system for Cisco ASR 5000 Series, ASR 5500 Series, ASR 5700 Series devices, and Cisco Virtualized Pack…	CWE-306 Missing Authentication for Critical Function	CVE-2017-3819	2024-11-21 12:26	2017-03-16	Show	GitHub Exploit DB Packet Storm