Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251981	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

251982	6.5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1234	2012-02-23 11:46	2012-02-21	Show	GitHub Exploit DB Packet Storm

251983	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0244	2012-02-23 11:41	2012-02-21	Show	GitHub Exploit DB Packet Storm

251984	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0243	2012-02-23 11:40	2012-02-21	Show	GitHub Exploit DB Packet Storm

251985	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2012-0242	2012-02-23 11:37	2012-02-21	Show	GitHub Exploit DB Packet Storm

251986	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0241	2012-02-23 11:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

251987	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の GbScriptAddUp.asp における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-0240	2012-02-23 11:33	2012-02-21	Show	GitHub Exploit DB Packet Storm

251988	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の uaddUpAdmin.asp における管理者パスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2012-0239	2012-02-23 11:32	2012-02-21	Show	GitHub Exploit DB Packet Storm

251989	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の opcImg.asp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0238	2012-02-23 11:29	2012-02-21	Show	GitHub Exploit DB Packet Storm

251990	6.4	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における日付と時刻の同期設定を変更される脆弱性	CWE-119 バッファエラー	CVE-2012-0237	2012-02-23 11:27	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259031	5.3	MEDIUM Network	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a specially crafted cfg80211 vendor command, a buffer over-read can oc…	CWE-125 Out-of-bounds Read	CVE-2017-14905	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259032	5.3	MEDIUM Network	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the SENDACTIONFRAME IOCTL, a buffer over-read can occur if the payload…	CWE-125 Out-of-bounds Read	CVE-2017-14903	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259033	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the QCA_NL80211_VENDOR_SUBCMD_SET_TXPOWER_SCALE vendor command, in whi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14901	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259034	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the QCA_NL80211_VENDOR_SUBCMD_GET_CHAIN_RSSI vendor command, in which …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14900	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259035	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the QCA_NL80211_VENDOR_SUBCMD_SET_TXPOWER_SCALE_DECR_DB vendor command…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14899	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259036	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the QCA_NL80211_VENDOR_SUBCMD_SET_TXPOWER_SCALE vendor command, in whi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14898	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259037	7.8	HIGH Local	google	android	In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a memory allocation without a length field validation in the mobicore driver w…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-14896	2024-11-21 12:13	2017-12-6	Show	GitHub Exploit DB Packet Storm

259038	6.5	MEDIUM Adjacent	hikvision	ds-2cd2432f-iw_firmware	HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate attackers to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi en…	CWE-311 Missing Encryption of Sensitive Data	CVE-2017-14953	2024-11-21 12:13	2017-12-2	Show	GitHub Exploit DB Packet Storm

259039	7.5	HIGH Network	restlet	restlet	Restlet Framework before 2.3.12 allows remote attackers to access arbitrary files via a crafted REST API HTTP request that conducts an XXE attack, because only general external entities (not paramete…	CWE-611 XXE	CVE-2017-14949	2024-11-21 12:13	2017-12-1	Show	GitHub Exploit DB Packet Storm

259040	7.5	HIGH Network	restlet	restlet	Restlet Framework before 2.3.11, when using SimpleXMLProvider, allows remote attackers to access arbitrary files via an XXE attack in a REST API HTTP request. This affects use of the Jax-rs extension.	CWE-611 XXE	CVE-2017-14868	2024-11-21 12:13	2017-12-1	Show	GitHub Exploit DB Packet Storm