Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 9, 2026, 12:59 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251591 | 6.4 | 警告 | VMware | - | VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0908 | 2010-03-23 14:10 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 251592 | 2.1 | 注意 | VMware | - | 複数の VMware 製品の VI Client におけるパスワードを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-0518 | 2010-03-23 14:10 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 251593 | 4.4 | 警告 | KVM レッドハット |
- | KVM の x86 エミュレータにおける権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0419 | 2010-03-23 14:09 | 2010-03-1 | Show | GitHub Exploit DB Packet Storm |
| 251594 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0263 | 2010-03-19 10:28 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251595 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0262 | 2010-03-19 10:28 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251596 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0261 | 2010-03-19 10:28 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251597 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0260 | 2010-03-19 10:28 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251598 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0258 | 2010-03-19 10:27 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251599 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0264 | 2010-03-19 10:27 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
| 251600 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0257 | 2010-03-19 10:27 | 2010-03-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 19, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1631 | 4.8 |
MEDIUM
Network |
siemens |
scalance_m-800_firmware scalance_s615_firmware scalance_sc-600_firmware scalance_sc622-2c_firmware scalance_sc632-2c_firmware scalance_sc636-2c_firmware scalance_sc642-2c_firmware
Los dispositivos afectados no sanean correctamente los datos introducidos por un usuario al renderizar la interfaz web. Esto podría permitir a un atacante remoto autenticado con privilegios administr…
|
CWE-80 |
NVD-CWE-Other Basic XSS
CVE-2022-36325
|
2026-04-14 18:16 |
2022-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1632 | 7.5 |
HIGH
Network |
siemens |
scalance_m-800_firmware scalance_s615_firmware scalance_w700_ieee_802.11ax_firmware scalance_w700_ieee_802.11n_firmware scalance_w700_ieee_802.11ac_firmware scalance_xb-200_firmware
Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of s…
|
CWE-770
|
Allocation of Resources Without Limits or Throttling
CVE-2022-36324
|
2026-04-14 18:16 |
2022-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1633 | 7.5 |
HIGH
Network |
siemens |
scalance_m-800_firmware scalance_s615_firmware scalance_w700_ieee_802.11ax_firmware scalance_w700_ieee_802.11n_firmware scalance_w700_ieee_802.11ac_firmware scalance_xb-200_firmware
Los dispositivos afectados no manejan adecuadamente la renegociación de los parámetros SSL/TLS. Esto podría permitir a un atacante remoto no autenticado eludir la prevención de fuerza bruta de TCP y …
|
CWE-770
|
Allocation of Resources Without Limits or Throttling
CVE-2022-36324
|
2026-04-14 18:16 |
2022-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1634 | 7.2 |
HIGH
Network |
siemens |
scalance_m-800_firmware scalance_s615_firmware scalance_sc-600_firmware scalance_sc622-2c_firmware scalance_sc632-2c_firmware scalance_sc636-2c_firmware scalance_sc642-2c_firmware
Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.
|
CWE-74 |
NVD-CWE-Other Injection
CVE-2022-36323
|
2026-04-14 18:16 |
2022-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1635 | 7.2 |
HIGH
Network |
siemens |
scalance_m-800_firmware scalance_s615_firmware scalance_sc-600_firmware scalance_sc622-2c_firmware scalance_sc632-2c_firmware scalance_sc636-2c_firmware scalance_sc642-2c_firmware
Los dispositivos afectados no sanean correctamente un campo de entrada. Esto podría permitir a un atacante remoto autenticado con privilegios administrativos inyectar código o generar un shell de raí…
|
CWE-74 |
NVD-CWE-Other Injection
CVE-2022-36323
|
2026-04-14 18:16 |
2022-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1636 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1637 | 8.8 |
HIGH
Network |
siemens |
6gk6108-4am00-2ba2_firmware 6gk6108-4am00-2da2_firmware 6gk5804-0ap00-2aa2_firmware 6gk5812-1aa00-2aa2_firmware 6gk5812-1ba00-2aa2_firmware 6gk5816-1aa00-2aa2_firmware 6gk5816-1ba00… |
Los dispositivos afectados no autorizan apropiadamente la función change password de la interfaz web. Esto podría permitir a usuarios poco privilegiado escalar sus privilegios |
CWE-862
Missing Authorization |
CVE-2022-31765 | 2026-04-14 18:16 | 2022-10-11 | Show | GitHub Exploit DB Packet Storm |
| 1638 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfi… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1639 | 5.3 |
MEDIUM
Adjacent |
samsung arista siemens |
galaxy_i9305_firmware c-250_firmware c-260_firmware c-230_firmware c-235_firmware c-200_firmware c-120_firmware c-130_firmware c-100_firmware c-110_firmware o-105_firmwa… |
Se detectó un problema en los dispositivos Samsung Galaxy S3 i9305 versión 4.4.4. Las implementaciones de WPA, WPA2 y WPA3 reensamblan fragmentos con números de paquete no consecutivos. Un adversario… |
CWE-20
Improper Input Validation |
CVE-2020-26146 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |
| 1640 | 6.5 |
MEDIUM
Adjacent |
samsung siemens |
galaxy_i9305_firmware 6gk5763-1al00-7da0_firmware 6gk5766-1ge00-7da0_firmware 6gk5766-1ge00-7db0_firmware 6gk5766-1je00-7da0_firmware 6gk5766-1ge00-7ta0_firmware 6gk5766-1ge00-7tb0_… |
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and proces… |
CWE-20
Improper Input Validation |
CVE-2020-26145 | 2026-04-14 18:16 | 2021-05-12 | Show | GitHub Exploit DB Packet Storm |