Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251481	7.5	危険	アドバンテック株式会社	-	複数の Advantech OPC Server 製品の OPC Server ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1914	2012-02-23 10:38	2012-02-21	Show	GitHub Exploit DB Packet Storm

251482	10	危険	Novell	-	Windows 上で稼働する Novell iPrint Client におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4187	2012-02-23 10:02	2012-02-9	Show	GitHub Exploit DB Packet Storm

251483	9.3	危険	Novell	-	Windows 上で稼働する Novell iPrint Client におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4186	2012-02-23 10:01	2012-02-9	Show	GitHub Exploit DB Packet Storm

251484	10	危険	Novell	-	Windows 上で稼働する Novell iPrint Client における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-4185	2012-02-23 10:01	2012-02-9	Show	GitHub Exploit DB Packet Storm

251485	6	警告	Pluck CMS	-	pluck の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1227	2012-02-22 16:26	2012-02-21	Show	GitHub Exploit DB Packet Storm

251486	6.8	警告	Antonio de Vincentiis	-	GAzie の modules/config/admin_utente.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1220	2012-02-22 16:24	2012-02-21	Show	GitHub Exploit DB Packet Storm

251487	4.3	警告	freelancerKit	-	freelancerKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1219	2012-02-22 16:18	2012-02-21	Show	GitHub Exploit DB Packet Storm

251488	7.5	危険	freelancerKit	-	freelancerKit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1218	2012-02-22 16:15	2012-02-21	Show	GitHub Exploit DB Packet Storm

251489	4.3	警告	Zenphoto	-	Zenphoto におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0995	2012-02-22 16:12	2012-02-21	Show	GitHub Exploit DB Packet Storm

251490	6	警告	Zenphoto	-	Zenphoto の Manage Albums 機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0994	2012-02-22 16:09	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248201	6.5	MEDIUM Network	swftools	swftools	SWFTools 2013-04-09-1007 on Windows has a "Data from Faulting Address controls Branch Selection starting at image00000000_00400000+0x0000000000003e71" issue. This issue can be triggered by a malforme…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8420	2024-11-21 12:34	2017-07-6	Show	GitHub Exploit DB Packet Storm

248202	8.1	HIGH Network	aeroadmin	aeroadmin	AeroAdmin 4.1 uses an insecure protocol (HTTP) to perform software updates. An attacker can hijack an update via man-in-the-middle in order to execute code in the machine.	CWE-444 HTTP Request Smuggling	CVE-2017-8894	2024-11-21 12:34	2017-07-3	Show	GitHub Exploit DB Packet Storm

248203	7.5	HIGH Network	aeroadmin	aeroadmin	AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8893	2024-11-21 12:34	2017-07-3	Show	GitHub Exploit DB Packet Storm

248204	7.5	HIGH Network	linux	linux_kernel	The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a UDP packet from a remote attacker.…	CWE-129 Improper Validation of Array Index	CVE-2017-8797	2024-11-21 12:34	2017-07-3	Show	GitHub Exploit DB Packet Storm

248205	6.5	MEDIUM Network	elastic	kibana	In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters crede…	CWE-200 Information Exposure	CVE-2017-8443	2024-11-21 12:34	2017-07-1	Show	GitHub Exploit DB Packet Storm

248206	8.1	HIGH Network	microsoft	azure_active_directory_connect	Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "A…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-8613	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

248207	7.0	HIGH Local	microsoft	windows_server_2016 windows_10	The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application…	CWE-281 Improper Preservation of Permissions	CVE-2017-8579	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

248208	7.0	HIGH Local	microsoft	windows_server_2016 windows_10	The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted applicatio…	CWE-665 Improper Initialization	CVE-2017-8576	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

248209	5.5	MEDIUM Local	microsoft	windows_server_2016 windows_10	The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics …	CWE-200 Information Exposure	CVE-2017-8575	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm

248210	7.8	HIGH Local	microsoft	windows_defender forefront_endpoint_protection security_essentials endpoint_protection windows_intune_endpoint_protection	The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows S…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8558	2024-11-21 12:34	2017-06-29	Show	GitHub Exploit DB Packet Storm