Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251041	6.4	警告	infradead	-	OpenConnect における任意の AnyConnect SSL VPN サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3901	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251042	5.8	警告	christian dywan	-	Midori における任意の HTTPS Web サイトになりすまされる脆弱性	CWE-Other その他	CVE-2010-3900	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

251043	5	警告	IBM	-	IBM OmniFind におけるサービス運用妨害 (DoS) 状態となる脆弱性	CWE-399 リソース管理の問題	CVE-2010-3899	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251044	5	警告	IBM	-	IBM OmniFind における認証を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3898	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251045	5	警告	IBM	-	IBM OmniFind の ESSearchApplication/palette.do における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-3897	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251046	7.5	危険	IBM	-	IBM OmniFind の ESSearchApplication ディレクトリツリーにおけるサーバ設定を変更される脆弱性	CWE-287 不適切な認証	CVE-2010-3896	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251047	7.2	危険	IBM	-	IBM OmniFind の esRunCommand における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3895	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251048	9.3	危険	IBM	-	IBM OmniFind の Java_com_ibm_es_oss_CryptionNative_ESEncrypt 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3894	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251049	7.5	危険	IBM	-	IBM OmniFind の管理インタフェースにおける任意の管理者操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3893	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251050	6.8	警告	IBM	-	IBM OmniFind のログインフォームにおけるセッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2010-3892	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266631	5.5	MEDIUM Local	lepton_project	lepton	The build_huffcodes function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause denial of service (out-of-bounds write) via a crafted jpeg file.	CWE-787 Out-of-bounds Write	CVE-2016-6237	2024-11-21 11:55	2017-02-3	Show	GitHub Exploit DB Packet Storm

266632	5.5	MEDIUM Local	lepton_project	lepton	The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg file.	CWE-125 Out-of-bounds Read	CVE-2016-6236	2024-11-21 11:55	2017-02-3	Show	GitHub Exploit DB Packet Storm

266633	5.5	MEDIUM Local	lepton_project	lepton	The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (segmentation fault) via a crafted jpeg file.	CWE-399 Resource Management Errors	CVE-2016-6235	2024-11-21 11:55	2017-02-3	Show	GitHub Exploit DB Packet Storm

266634	5.5	MEDIUM Local	lepton_project	lepton	The process_file function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (crash) via a crafted jpeg file.	CWE-20 Improper Input Validation	CVE-2016-6234	2024-11-21 11:55	2017-02-3	Show	GitHub Exploit DB Packet Storm

266635	7.2	HIGH Network	ibm	spectrum_scale general_parallel_file_system	IBM General Parallel File System is vulnerable to a buffer overflow. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6115	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266636	6.5	MEDIUM Local	ibm	tivoli_storage_manager tivoli_storage_manager_for_virtual_environments_data_protection_for_vmware	IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user.	CWE-255 Credentials Management	CVE-2016-6110	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266637	7.5	HIGH Network	ibm	urbancode_deploy	IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties.	CWE-200 Information Exposure	CVE-2016-6068	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266638	3.1	LOW Network	ibm	forms_experience_builder	IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2016-6001	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266639	3.7	LOW Network	ibm	sterling_selling_and_fulfillment_foundation	IBM Sterling Order Management transmits the session identifier within the URL. When a user is unable to view a certain view due to not being allowed permissions, the website responds with an error pa…	CWE-200 Information Exposure	CVE-2016-5953	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266640	5.4	MEDIUM Network	ibm	kenexa_lms	IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le…	CWE-79 Cross-site Scripting	CVE-2016-5942	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm