Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251961	7.5	危険	IBM	-	IBM DB2 の DB2 Administration Server コンポーネントにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0731	2011-03-1 15:17	2011-01-28	Show	GitHub Exploit DB Packet Storm

251962	7.8	危険	ISC, Inc. レッドハット	-	ISC DHCPv6 にサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0413	2011-03-1 15:10	2011-01-28	Show	GitHub Exploit DB Packet Storm

251963	7.5	危険	Google	-	Google Android SDK の BMP::readFromStream メソッドにおける整数オーバーフロー脆弱性	CWE-189 数値処理の問題	CVE-2008-0986	2011-03-1 14:58	2008-03-6	Show	GitHub Exploit DB Packet Storm

251964	6.8	警告	Google	-	Google Android SDK の GIF ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0985	2011-03-1 14:56	2008-03-6	Show	GitHub Exploit DB Packet Storm

251965	7.2	危険	サイバートラスト株式会社 VMware Linux レッドハット	-	64-bit プラットフォーム上で稼働している Linux kernel の compat_alloc_user_space 関数における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2010-3081	2011-03-1 14:46	2010-09-21	Show	GitHub Exploit DB Packet Storm

251966	4.6	警告	サイバートラスト株式会社 VMware Linux レッドハット	-	Linux kernel における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0291	2011-03-1 14:44	2010-02-15	Show	GitHub Exploit DB Packet Storm

251967	7.1	危険	サイバートラスト株式会社 VMware Linux レッドハット	-	Linux kernel の sctp_process_unk_param 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1173	2011-03-1 14:43	2010-05-7	Show	GitHub Exploit DB Packet Storm

251968	2.6	注意	サイバートラスト株式会社 VMware Linux レッドハット	-	RHEL の MMIO 命令デコーダにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0730	2011-03-1 14:42	2010-05-6	Show	GitHub Exploit DB Packet Storm

251969	4.9	警告	サイバートラスト株式会社 VMware Linux レッドハット	-	Linux kernel の drivers/connector/connector.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0410	2011-03-1 14:41	2010-02-22	Show	GitHub Exploit DB Packet Storm

251970	7.1	危険	サイバートラスト株式会社 VMware Linux レッドハット	-	Linux Kernel の azx_position_ok 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1085	2011-03-1 14:40	2010-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251671	4.9	MEDIUM Network	misp	misp	The admin_edit function in app/Controller/UsersController.php in MISP 2.4.82 mishandles the enable_password field, which allows admins to discover a hashed password by reading the audit log.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2017-16946	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251672	7.5	HIGH Network	exim debian	exim debian_linux	The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service (infinite loop and stack exhaustion) via vectors involving BDAT com…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-16944	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251673	9.8	CRITICAL Network	exim debian	exim debian_linux	The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BD…	CWE-416 Use After Free	CVE-2017-16943	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251674	6.5	MEDIUM Network	libsndfile_project	libsndfile	In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.	CWE-369 Divide By Zero	CVE-2017-16942	2024-11-21 12:17	2017-11-26	Show	GitHub Exploit DB Packet Storm

251675	8.8	HIGH Network	octobercms	october	October CMS through 1.0.428 does not prevent use of .htaccess in themes, which allows remote authenticated users to execute arbitrary PHP code by downloading a theme ZIP archive from /backend/cms/the…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-16941	2024-11-21 12:17	2017-11-25	Show	GitHub Exploit DB Packet Storm

251676	7.8	HIGH Local	linux debian	linux_kernel debian_linux	The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCV…	CWE-416 Use After Free	CVE-2017-16939	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251677	7.8	HIGH Local	optipng_project	optipng	A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to cause a denial-of-service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolle…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-16938	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251678	6.5	MEDIUM Adjacent	tenda	ac9_firmware ac15_firmware ac18_firmware	Directory Traversal vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US…	CWE-22 Path Traversal	CVE-2017-16936	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251679	9.8	CRITICAL Network	ametys	ametys	Ametys before 4.0.3 requires authentication only for URIs containing a /cms/ substring, which allows remote attackers to bypass intended access restrictions via a direct request to /plugins/core-ui/s…	CWE-20 Improper Input Validation	CVE-2017-16935	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm

251680	9.8	CRITICAL Network	dbltek	web_server	The web server on DBL DBLTek devices allows remote attackers to execute arbitrary OS commands by obtaining the admin password via a frame.html?content=/dev/mtdblock/5 request, and then using this pas…	CWE-78 OS Command	CVE-2017-16934	2024-11-21 12:17	2017-11-24	Show	GitHub Exploit DB Packet Storm